[HIGH] Magento XML Injection vulnerability in the Widgets Update Layout

PKSA-rcpd-m1gd-98mf CVE-2021-36022 GHSA-3x9x-vhqj-cv27

Affected package: magento/project-community-edition

Affected version: <=2.0.2

Reported by:
GitHub