[MEDIUM] Magento is affected by an improper authorization vulnerability

PKSA-jvct-y28v-8gvh CVE-2021-36037 GHSA-vrq2-w7r7-3fp2

Affected package: magento/community-edition

Affected version: <2.3.7-p1|=2.3.7|>=2.4.2-p1,<2.4.2-p2|=2.4.2

Reported by:
GitHub