Support for Drupal 7 is ending on 5 January 2025—it’s time to migrate to Drupal 10! Learn about the many benefits of Drupal 10 and find migration tools in our resource center.
Sanitizes 'block names' from the hotblocks settings screen to prevent XSS vulnerabilities.
Prevents infinite looping in situations where the same hotblock references itself as content, or another hotblock references one that in turn references itself.
Added feature in settings page: "respect node access" option which requires the hotblocks admin to have view access of any node that they want to add or remove from the hotblock. Previously, being able to administer a hotblock did not restrict the nodes available to use with it.
Non-admin users that did not have view access to a node could still be capable of viewing it within the context of a hotblock, but now they will either need node access to do so, or the "respect node access" option must be turned off.