Security: Patch for xss fixes on learner notes feature

edX has just publicly released a security patch to the learner notes feature. This patch addresses a XSS vulnerability.

These fixes were backported into the Koa Open edX release in fix(notes): XSS vector for a11y text attached to notes editor by matthugs · Pull Request #26456 · edx/edx-platform · GitHub. We advise Open edX administrators to patch their instances as soon as possible.

1 Like