- Improved: Add support for plugin user data (#8312) (#8080)
- Improved: Configure Rich Text editor to handle the first table row as header (#8163) (#3535 by @Marph)
- Improved: Updated packages css-loader (v6.7.4), dayjs (v1.11.8), domhandler (v5), domutils (v3.1.0), highlight.js (v11.8.0), react-redux (v8.0.7), style-loader (v3.3.3), styled-components (v5.3.11), ts-loader (v9.4.3)
- Improved: Upgrade E2EE encryption method to AES-256 (#7686)
- Fixed: Allow certain HTML anchor tags (#8286)
- Fixed: Display plugin console in dev mode (#8210)
- Fixed: Duplicated published notes retain the published note's label's color (#8287)
- Fixed: Include more Rich Text editor commands in the menu (#8316)
- Security: Prevent XSS when passing specially encoded string to a link (PoC by lin@UCCU Hacker) (57b4198)
- Security: Prevent calling arbitrary commands via x-callback-url (PoC by lin@UCCU Hacker) (6982661)