WordPress 5.4.1 is released today. As this is a Security release, WordPress recommends you to update your site immediately if you haven’t done yet. Not only this version but also WordPress has updated all versions since WordPress 3.7
This is a security and maintenance release. However, the major release of WordPress after WordPress 5.4 will be in the form of WordPress 5.5
Security Updates
The security updates were necessary to make the following changes in WordPress 5.4.1:
- Invalidate password reset tokens properly.
- Prevent viewing of some unauthenticated private posts.
- Solve an XSS issue present in the Customizer.
- Solve an XSS issue present in the search block.
- WordPress 5.4.1 fixes an XSS vulnerability that stores in the customizer.
- Solve an XSS issue present in wp-object-cache.
- Solve an XSS issue present during the file uploads.
WordPress has thanked all the contributors for reporting these bugs to the security team privately.
Also, check Block Editor Updates and Other Core WordPress Changes.
How To Download WordPress 5.4.1
There are three possible ways to download.
Firstly, you can download it from wordpress.org
Secondly, you can also update the version of WordPress from your dashboard.
In addition, the site automatically updates if your web host supports auto-updates.
If you want to discover multiple ways to check WordPress version then visit this post: