Release info

Created by: drunken monkey
Created on: May 23, 2012 - 12:56
Last updated: May 23, 2012 - 20:22
Core compatibility: 7.x

Release notes

See also SA-CONTRIB-2012-084 - Search API - Cross Site Scripting (XSS)

This is a security release, containing an important security fix. Users of the project are strongly encouraged to update to this version as soon as possible.
If you are using an older version, incorrectly escaped error messages might lead to your site being vulnerable to an XSS attack. Note, however, that this can only happen if you have some advanced search mechanism, like a view with exposed sorts or use the old (deprecated) Facets module.

As announced in the RC1 release notes, this release also removes the old Facets module, in the future only the Facet API integration is supported.

Complete list of changes: