Drupal users should upgrade to the latest versions to mitigate against potential XSS vulnerabilities. Web administrators should review the detailed advisory.

Cisco has released its ASA, FMC and FTD Software Security Bundled Publication. This addresses 12 Cisco Security Advisories that describe 12 vulnerabilities in Cisco ASA and FTD Software.

VMware released a patch to fix the stored Cross-Site Scripting (XSS) vulnerability in VMware ESXi. Users should review this advisory here.

Drupal has released security updates to fix third-party library vulnerabilities. Web administrators are advised to upgrade versions of drupal to the latest versions. Also note that versions of Drupal 8 prior to 8.7.x have reached end of life and do not receive security coverage.

Oracle released its April Critical Patch Updates which address multiple vulnerabilities.