WordPress version 4.2.1 has been released by WordPress.org. This is a Critical Security Update that addresses a cross-site scripting vulnerability that could enable anonymous users to compromise a site.

For more information, see the 4.2.1 Release Notes.

It is strongly suggested that you Download WordPress 4.2.1 or from your WordPress Dashboard go to Updates and simply click “Update Now.” Sites that are already on version 4.2 that support automatic background updates should automatically update to WordPress 4.2.1.