[8.10] adds note about security update to 8.10.4 RNs (backport #4056) (…

…#4058) Co-authored-by: Joe Peeples <[email protected]> Co-authored-by: Nastasha Solomon <[email protected]> Co-authored-by: Benjamin Ironside Goldstein <[email protected]>
elastic · Oct 17, 2023 · 2c4b259 · 2c4b259
1 parent bbccf62
commit 2c4b259
Showing 1 changed file with 12 additions and 0 deletions.
diff --git a/docs/release-notes/8.10.asciidoc b/docs/release-notes/8.10.asciidoc
@@ -5,6 +5,18 @@
 [[release-notes-8.10.4]]
 === 8.10.4
 
+[discrete]
+[[security-update-8.10.4]]
+==== Security updates
+
+* If {elastic-endpoint} (v7.9.0 - v8.10.3) is configured to use a non-default option in which the logging level is explicitly set to `debug`, and {agent} is simultaneously configured to collect and send those logs to {es}, then {agent} API keys can be viewed in {es} in plaintext.
++
+The issue is resolved in {stack} 8.10.4.
++
+For more information, refer to our related
+https://discuss.elastic.co/t/endpoint-v8-10-4-security-update/345203[security
+announcement].
+
 [discrete]
 [[bug-fixes-8.10.4]]
 ==== Bug fixes