From a1153d3393858e0495d65e5d4f57a6a8e976d0f8 Mon Sep 17 00:00:00 2001
From: Marc 'risson' Schmitt <marc.schmitt@risson.space>
Date: Wed, 26 Jun 2024 12:40:01 +0200
Subject: [PATCH] website/docs: update 2024.2 release notes with security fixes
 (#10232)

---
 website/docs/releases/2024/v2024.2.md | 5 +++++
 1 file changed, 5 insertions(+)

diff --git a/website/docs/releases/2024/v2024.2.md b/website/docs/releases/2024/v2024.2.md
index e38a31e5bc..749d7d4520 100644
--- a/website/docs/releases/2024/v2024.2.md
+++ b/website/docs/releases/2024/v2024.2.md
@@ -347,6 +347,11 @@ helm upgrade authentik authentik/authentik -f values.yaml --version ^2024.2
 -   stages/user_write: ensure user data is json-serializable (cherry-pick #8926) (#8928)
 -   tenants: really ensure default tenant cannot be deleted (cherry-pick #8875) (#8876)
 
+## Fixed in 2024.2.4
+
+-   security: fix [CVE-2024-37905](../../security/CVE-2024-37905.md), reported by [@m2a2](https://github.com/m2a2) (cherry-pick #10230) (#10238)
+-   security: fix [CVE-2024-38371](../../security/CVE-2024-38371.md), reported by Stefan Zwanenburg (cherry-pick #10229) (#10235)
+
 ## API Changes
 
 #### What's New