4.16.11

• Improved the performance of element queries. (#16401)
• Updated svg-sanitizer to 0.22. (#17738)

4.16.10

• Fixed a bug where the folderPath asset query param required a trailing slash. (craftcms/html-field#18)
• Fixed PHP deprecation errors.

5.8.13.2

• Added craft\services\UserPermissions::validatePermission().
• Fixed an error that occurred when saving entries. (#17721)
• Fixed a bug where GraphiQL’s query input had a 550px max height. (#17723)
• Fixed an authorization error that occurred when non-admin users attempted to modify content on multi-site installs with SEOmatic installed. (#17716)

5.8.13.1

• Fixed errors that could occur if a field layout was referencing an invalid field UUID. (#17713)

4.16.9.1

• Added craft\services\UserPermissions::validatePermission().
• Fixed an authorization error that occurred when non-admin users attempted to modify content on multi-site installs with SEOmatic installed. (#17716)

5.8.13

• Added craft\services\UserPermissions::reset().
• craft\models\FieldLayout::EVENT_CREATE_FORM event handlers can now control whether the form will be rendered statically, by setting $event->static. (#17699)
• Fixed a bug where reference tags that only referenced an entry’s slug weren’t resolving.
• Fixed a race condition that could cause “User is not authorized” errors in the control panel. (#17694)
• Fixed a bug where craft\elements\Asset::getFormattedSizeInBytes() wasn’t returning null when the asset’s size property was null. (#17695)
• Fixed an error that could occur when saving an address, if any fields contained more than 255 characters, or emoji characters. (#17696)
• Fixed a bug where searches for phrases were only matching elements if the phrase exactly matched the indexed keywords on PostgreSQL.
• Fixed a bug where it wasn’t possible for non-admins with “Impersonate users” permissions to impersonate users who had stale permissions. (#17689)
• Fixed an error that could occur when installing Craft with existing project config data. (#17587)
• Fixed a bug where entry authors could be changed to the current user when updating a provisional draft with upstream changes. (#17693)
• Fixed a bug where Money fields lost their focus when the clear button was activated.
• Fixed a bug where focus wasn’t being managed properly when clicking on the image editor modal background. (#17455)
• Fixed a bug where custom sources that were hidden for certain user groups weren’t available within element selector modals either. (#17703)
• Fixed a bug where element queries weren’t returning any results if they had a param that resolved to multiple generated fields. (#17709)
• Fixed a bug where Link fields weren’t preserving spaces within Phone and SMS link labels. (#17707)
• Fixed a bug where disabled rows within element selector modals could contain nested focusable elements. (#17053)
• Fixed a bug where Ctrl/Command + A wasn’t selecting all elements within element indexes. (#17033)

4.16.9

• Added craft\services\UserPermissions::reset().
• Fixed a bug where reference tags that only referenced an entry’s slug weren’t resolving.
• Fixed a race condition that could cause “User is not authorized” errors in the control panel. (#17694)
• Fixed a bug where craft\elements\Asset::getFormattedSizeInBytes() wasn’t returning null when the asset’s size property was null. (#17695)
• Fixed an error that could occur when saving an address, if any fields contained more than 255 characters, or emoji characters. (#17696)
• Fixed a bug where searches for phrases were only matching elements if the phrase exactly matched the indexed keywords on PostgreSQL.
• Fixed a bug where it wasn’t possible for non-admins with “Impersonate users” permissions to impersonate users who had stale permissions. (#17689)

5.8.12

• Added support for passing a hashed returnUrl param to standalone Live Preview URLs. (#17684)
• Improved the performance of fetching nested values within content block fields. (#17677)
• Fixed a bug where embedded element indexes were manipulating the window title. (#17679)
• Fixed an error that could occur when rendering an Entries field. (#17686)
• Fixed a bug where element selection modals weren’t rendering elements in a structure view when they should have. (#17678)

5.8.11

• Fixed a JavaScript error that occurred when applying a draft that had a percent sign in its name. (#17674)
• Fixed a bug where custom source headings could have IDs that conflicted with other control panel components. (#17632)
• Fixed a potential session leakage vulnerability.

4.16.8

• Fixed a potential session leakage vulnerability.