[CRITICAL] Magento XML Injection vulnerability in the Widgets Module

PKSA-21fx-wcrz-h4sg CVE-2021-36033 GHSA-p746-qw73-qmmx

Affected package: magento/project-community-edition

Affected version: <=2.0.2

Reported by:
GitHub