[HIGH] Magento XML Injection vulnerability in the Widgets Update Layout

PKSA-92m7-qj1w-j75w CVE-2021-36022 GHSA-3x9x-vhqj-cv27

Affected package: magento/community-edition

Affected version: =2.4.2|>=2.4.2-p1,<2.4.2-p2|=2.3.7|<2.3.7-p1

Reported by:
GitHub