[CRITICAL] Magento XML Injection vulnerability in the Widgets Update Layout

PKSA-536b-9m7h-tqdk CVE-2021-36023 GHSA-8cjg-f53m-8m9q

Affected package: magento/community-edition

Affected version: =2.4.2|>=2.4.2-p1,<2.4.2-p2|=2.3.7|<2.3.7-p1

Reported by:
GitHub