From 2c4b259b770b56ee63f5940e143e77b1b55dd7d6 Mon Sep 17 00:00:00 2001
From: "mergify[bot]" <37929162+mergify[bot]@users.noreply.github.com>
Date: Tue, 17 Oct 2023 13:46:53 -0400
Subject: [PATCH] [8.10] adds note about security update to 8.10.4 RNs
 (backport #4056) (#4058)

Co-authored-by: Joe Peeples <joe.peeples@elastic.co>
Co-authored-by: Nastasha Solomon <79124755+nastasha-solomon@users.noreply.github.com>
Co-authored-by: Benjamin Ironside Goldstein <91905639+benironside@users.noreply.github.com>
---
 docs/release-notes/8.10.asciidoc | 12 ++++++++++++
 1 file changed, 12 insertions(+)

diff --git a/docs/release-notes/8.10.asciidoc b/docs/release-notes/8.10.asciidoc
index 46ce7a7de0..f948daadec 100644
--- a/docs/release-notes/8.10.asciidoc
+++ b/docs/release-notes/8.10.asciidoc
@@ -5,6 +5,18 @@
 [[release-notes-8.10.4]]
 === 8.10.4
 
+[discrete]
+[[security-update-8.10.4]]
+==== Security updates
+
+* If {elastic-endpoint} (v7.9.0 - v8.10.3) is configured to use a non-default option in which the logging level is explicitly set to `debug`, and {agent} is simultaneously configured to collect and send those logs to {es}, then {agent} API keys can be viewed in {es} in plaintext.
++
+The issue is resolved in {stack} 8.10.4.
++
+For more information, refer to our related
+https://discuss.elastic.co/t/endpoint-v8-10-4-security-update/345203[security
+announcement].
+
 [discrete]
 [[bug-fixes-8.10.4]]
 ==== Bug fixes