Wagtail 2.12.4 release notes¶
April 19, 2021
CVE-2021-29434: Improper validation of URLs (‘Cross-site Scripting’) in rich text fields¶
Many thanks to Kevin Breen for reporting this issue.
Prevent reverse migration errors in images and documents (Mike Brown)
Avoid wagtailembeds migration failure on MySQL 8.0.13+ (Matt Westcott)