Upgrading from 4.1.6 to 4.1.7
Please refer to the upgrade instructions corresponding to your installation method.
$xssCleanis true changed the output. Now it uses
FILTER_SANITIZE_STRING. Make sure the change is acceptable or not. Note that using XSS filtering is a bad practice. It does not prevent XSS attacks perfectly. Using
esc()with the correct
$contextin the views is recommended.