6.3.2 2022-04-20

• 2022-04-20 Removed unwanted line breaks from base64 encoded authorization header in Kernel::GenericInterface::Transport::HTTP::REST.
• 2022-04-13 Fixed refresh in overviews if fulltext search in toolbar is not enabled. #237
• 2022-04-01 Fixed encoding for autocompletion in dynamic field edit view of type Webservice.
• 2022-03-31 Fixed check of UntilTime in Kernel::System::Ticket::Event::TicketPendingTimeReset. [#221)(#221)
• 2022-03-28 Added support for online package repositories again.
• 2022-03-24 Fixed XSS vulnerability in package manager GUI (CVE-2022-0475).
• 2022-03-24 Deactivated support for execution of configurable system commands from Sendmail and PostMaster pre-filter configurations (CVE-2021-36100).
• 2022-03-24 The system command in SysConfig option "MIME-Viewer" now is only configurable via Kernel/Config.pm (CVE-2021-36100).
• 2022-03-23 Removed dashboard widget support for execution of system commands (CVE-2021-36100).
• 2022-03-23 Improved DynamicFieldObject _SanitizeConfig - ReservedKeywords will now be removed.
• 2022-03-23 Removed configurable system commands from generic agents (CVE-2021-36100).
• 2022-03-22 Added missing CKEditor codemirror plugin.
• 2022-03-22 Fixed accidental deletion of OAuth2 token values on request for new token.
• 2022-03-17 Added PreRun function to Dev/Tools/TranslationsUpdate to check for symbolic links.
• 2022-03-15 Added new SysConfig option LibXML::EnableHugeXMLDataSupport to enable support for huge XML data in load_xml calls of CPAN library XML::LibXML.
• 2022-03-11 Removed 'send support bundle' to OTRS Group.
• 2022-03-11 CPAN module Mail::IMAPClient will now be correctly reported as required by bin/otrs.CheckModules.pl #222.