embed 8.x-1.5

Embed - Moderately critical - Cross Site Scripting - SA-CONTRIB-2022-042

Contributors (3)

recrit, Shashwat Purav, mstrelan

Changelog

Issues: 3 issues resolved.

Changes since 8.x-1.4:

Security

• Add CSRF protection for the embed preview route.

Bug

• #3232150 by recrit: Drupal 9: Fixed EmbedTestBase missing defaultTheme property.
• #3270971 by Shashwat Purav: Fixed duplicate word the in EmbedController documentation.
• #3222721 by mstrelan: Fix EmbedButtonAdminTest::testEmbedButtonAdmin() sometimes fails.