v1.12.16

GSadee released this 10 May 09:03

· 2707 commits to 1.14 since this release

TL;DR

🔒 This is a security release!

Fixes the following vulnerabilities:

Potential Cross Site Scripting (XSS) via the "Province" field in the Checkout and Address Book
Potential Cross Site Scripting (XSS) via the "Name" field (Taxons, Products, Options, Variants) in the Admin Panel

Details

#16179 [Documentation] Update release cycle and PR template (@GSadee)
#16190 Fix products grid (@kulczy)
#16196 Fix product review validation's notInRangeMessage (@mpysiak)
#16226 Remove unneeded placeholder from zone's scope select (@TheMilek)
#16241 [Security] Fixes for potential XSS in the Checkout, Address Book and Admin Panel (@GSadee)
#16232 [Maintenance] Update docker docs (@Wojdylak)

Full Changelog: v1.12.15...v1.12.16

Assets 2