Update time again – this time for another security issue.
Here’s the mail from wp-testers:
RC2 addresses the following vulnerability.
We also changed how we escape HTML attributes. Escaping is done with a new
This touched a lot of files so we need to do some broad testing to make sure we didn’t fat finger anything.
Should be GA soon; advisable to upgrade.