Support for Drupal 7 is ending on 5 January 2025—it’s time to migrate to Drupal 10! Learn about the many benefits of Drupal 10 and find migration tools in our resource center.
1) Security fix that can lead to CSRF attacks. Upgrading to the latest version is strongly advised. See SA-CONTRIB-2012-075 - Take Control - Cross Site Request Forgery (CSRF) for more details.
2) #834464 by vincent: Fixed call-time pass-by-reference deprecated warning. Also, switched to 6.x-2.x branch for committing changes instead of the HEAD branch.
3) Support for Drupal installations not having clean urls enabled.
4) Code clean-up.
5) A couple of other minor fixes.
In addition to the news page and sub-tabs, all security announcements are posted to an email list. To subscribe to email: log in, go to your user profile page and subscribe to the security newsletter on the Edit » My newsletters tab.