[LOW] Statamic CMS's incorrect authorization lets view-only users submit Live Preview content reserved for editors

PKSA-9stt-y5w8-fn5y CVE-2026-54244 GHSA-7mqq-4v55-88gh

Affected package: statamic/cms

Affected version: >=6.0.0,<6.20.3|<5.74.0

Reported by:
GitHub