Versions Compared

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

...

In this release note, we introduce improved filtering, and several bug fixes. Notable updates include security vulnerability fixes, and improved CSS styling.

...

Improvements (blue star)

Improved

...

visual and layout
Status
colourBlue
titleIMPROVED

...

  • Tasks marked as "Done"

...

  • now show with a strikethrough, now it’s easy to distinguish if tasks are completed.

...

    ...

    • We have also improved the scroll behavior on the timeline table. Both horizontal and vertical scrolls are now visible.

    • Card layouts are now evenly distributed across the page for a cleaner look. Also, a new icon has been introduced for "no result" in the dashboard.

    ...

    Improved user verification
    Status
    colourBlue
    titleIMPROVED

    We have improved the SAML workspace setup process by introducing a mandatory user verification stepfor creating or joining new SAML workspaces. Only authorized users can create or join a new SAML workspace.

    ...

    JQL Filter Enhancements
    Status
    colourBlue
    titleIMPROVED

    We made a confirmation popup for the "Restore all default values?" button in Global Settings > Page Customization. This change prevents accidental loss of changes by requiring user confirmation before resetting settings to default.

    Added JQL filter by field
    Status
    colourBlue
    titleIMPROVED

    Introduced filtering by fields visible in the table, including text fields for User, Project, Label, Priority, Status, Issue Type, and date-time pickers for filtering by after/before. Additionally, fields like Fix Version and Components are included You can now filter by additional fields, including user, project, and status, allowing for more precise searches.

    ...

    Improved user experience & interface
    Status
    colourBlue
    titleIMPROVED

    Removed category-based filtering in configuration views, making all configurations visible regardless of the selected share type. This ensures that JSM-specific options are accessible when share types include support tickets, improving usability across all views.

    Improved JQL filtering by labels
    Status
    colourBlue
    titleIMPROVED

    We added text input support for label filtering in JQL. Previously, labels couldn't have spaces or special characters, causing errors. Now it allows more flexible label usage.

    Replaced comment editor with contract signature WYSIWYG
    Status
    colourBlue
    titleIMPROVED

    Swapped the current markdown editor for our custom Contract Signature WYSIWYG editor for comments and description editing. This change introduces better customization options, a tailored toolbar, and improved ADF ↔︎ HTML conversion.

    Improved link management: Drag and drop for order
    Status
    colourBlue
    titleIMPROVED

    Previously, once a link is added, you couldn’t change how they were placed. Now, you can easily drag contents to rearrange links.

    ...

    Updated the column name in the shared_issue table from if_share_link_enabled to share_link_enabled to remove confusion caused by the "if_" prefix, which incorrectly suggested it was an issue field.

    Improved card layout
    Status
    colourBlue
    titleIMPROVED

    Improved the card layout for even distribution across the page. This update ensures that cards are organized neatly and the layout is responsive to various screen sizes.

    Redesigned icon for 'no result' in dashboard
    Status
    colourBlue
    titleIMPROVED

    We have redesigned External Share icon with magnifier icon.

    ...

    Updated scroll behavior for timeline table
    Status
    colourBlue
    titleIMPROVED

    Changed the scroll behavior on the timeline table to always display the horizontal scroll. Both horizontal and vertical scrolls are now visible.

    Redesigned error pages for detailed information
    Status
    colourBlue
    titleIMPROVED

    Error pages are redesigned to view issue with respective message like license expired, Atlassian reload required, version mismatch. Applied for a view for both light and dark mode.

    Bug Fixes (blue star)

    ...

    • In Global Settings - Page Customization, links can now be rearranged via drag-and-drop. Also, We added a confirmation popup for the "Restore all default values?" button to prevent accidental resets.

    ...

    • We have redesigned error pages with more detailed information.

    • We replaced the markdown editor with a custom WYSIWYG editor, allowing for more customized comment formatting.

    Bug Fixes (blue star)

    Security Fixes
    Status
    colourGreen
    titleFIXED

    Fixed issues where unauthorized users could delete shares or change board settings, and corrected a security issue so attackers won’t be able to access or change settings.

    Fixed XSS vulnerability
    Status
    colourGreen
    titleFIXED

    Resolved an XSS vulnerability triggered when creating an external share link with a project name containing an XSS payload.

    Fixed null pointer
    Status
    colourGreen
    titleFIXED

    Resolved a null pointer occurring in the filter view when time tracking fields are null. Now, the system safely handles null fields, preventing crashes in the filter view.

    ...

    Duplicate share creation fixed
    Status
    colourGreen
    titleFIXED

    The 'Create External Share Board' button is now disabled and greyed out immediately after the first click to prevent multiple submissions caused by repeated clicks during a delayed responsedue to delayed response.

    Fixed SMTP notifications
    Status
    colourGreen
    titleFIXED

    Fixed an issue where custom email settings blocked notifications from being sent to users.

    Fixed error when filtering by project on shared filter page
    Status
    colourGreen
    titleFIXED

    Previously, when users entered a project name in the search input, an error page was displayed. After the fix, the system now correctly displays issues or results from the searched project as expected. Additionally, filtering using multiple projects via JQL is now fully supported without errors.

    SMTP fix for watcher notifications
    Status
    colourGreen
    titleFIXED

    Fixed an issue where custom SMTP settings blocked watcher notifications to external users. Notifications now work correctly with SMTP setup.

    Fixed comment author

    ...

    missing
    Status
    colourGreen
    titleFIXED

    We resolved Fixed an issue where the comment author prefix was not appearing in Jira when comments were added via External Share. After the fix, comments now correctly display the author's name .

    Fixed issue with allowCreateNewIssue field not set during share creation
    Status
    colourGreen
    titleFIXED

    We resolved an issue where the allowCreateNewIssue field was not being set during the creation of a new share in Jira. After the fix, allowCreateNewIssue field is correctly set during share creation.

    Custom board - unable to start watching issues
    Status
    colourGreen
    titleFIXED

    Previously, attempting to watch issues resulted in an error. This bug has been fixed.

    Fixed frontend error: 'undefined' provided instead of stream
    Status
    colourGreen
    titleFIXED

    We resolved an error where 'undefined' was given instead of a valid stream type

    Security Fixes (blue star)

    Unauthorized share deletion vulnerability fixed
    Status
    colourGreen
    titleFIXED

    Prevented users with customer privileges from deleting external shares without Jira access using a valid JWT.

    Unauthorized modification of board card settings vulnerability fixed
    Status
    colourGreen
    titleFIXED

    Fixed a vulnerability where Jira Service Desk users could modify board card settings without permission. Now, only authorized users can change settings.

    Cross-Instance IDOR vulnerability fixed
    Status
    colourGreen
    titleFIXED

    We fixed a critical vulnerability that allowed attackers from one Jira instance to modify external share settings or access API key usage data in another instance.

    Fixed XSS vulnerability in external share link creation
    Status
    colourGreen
    titleFIXED

    Resolved an XSS vulnerability triggered when creating an external share link with a project name containing an XSS payload. This prevents malicious scripts from executing in shared links.

    CSS Styling Fixes (blue star)

    ...

    was missing from comments.

    CSS Fixes
    Status
    colourGreen
    titleFIXED

    • Fixed an issue where extra space appeared when using the "Group By" filter on

    ...

    • board

    ...

    • .

    • Fixed

    ...

    Status
    colourGreen
    titleFIXED

    ...

    • wrong color text format tab appeared

    ...

    • in dark mode.

    ...

    • Fixed

    ...

    Status
    colourGreen
    titleFIXED

    Sometimes, issue type icons were not shown on the board, issue view, JQL, and roadmap when opening a shared link without logging into ESFJ. Icons now display properly.

    Fixed text and code snippet overflow in comment section
    Status
    colourGreen
    titleFIXED

    ...

    • display issues where icons for issue types were not showing up properly in shared links.

    • Fixed an issue where long text and code snippets overflowed in

    ...

    • the comment section.

    Fixed priority field size issue
    Status
    colourGreen
    titleFIXED

    Adjusted the Priority field size to fit within the details section boundaries.

    ...