...
In Confluence page, header layout was static but now adjusts smoothly to various screen sizes. On mobile devices, it has a clean layout with links, buttons, a subscribe button, and an edit page feature.
Bug Fixes 
Fixed Integration issue
We’ve resolved a bug where data from Jira embedded on Confluence pages wasn't functioning correctly when using custom domains.
| Jira Legacy |
|---|
| server | System Jira |
|---|
| serverId | b66650ca-af1e-397f-81f5-9d94924a0a26 |
|---|
| key | ESFC-755 |
|---|
|
...
| Jira Legacy |
|---|
| server | System Jira |
|---|
| serverId | b66650ca-af1e-397f-81f5-9d94924a0a26 |
|---|
| key | ESFC-752746 |
|---|
|
| Jira Legacy |
|---|
| server | System Jira |
|---|
| serverId | b66650ca-af1e-397f-81f5-9d94924a0a26 |
|---|
| key | ESFC-750738 |
|---|
|
Bug Fixes
Fixed incorrect characters in page
Resolved an issue where page names in the Activity Tab appeared with incorrect characters, such as "@". Additionally, the dropdown menu was non-functional, preventing users from selecting page suggestions. Both issues have been addressed.
| Jira Legacy |
|---|
| server | System Jira |
|---|
| serverId | b66650ca-af1e-397f-81f5-9d94924a0a26 |
|---|
| key | ESFC-746-752 |
|---|
|
Resolved unauthorized access to private space activity logs
Fixed a vulnerability where lower-privileged users could access the activity logs of private space shares, potentially exposing sensitive information. Access controls have been strengthened to ensure that only authorized users can view this data.
| Jira Legacy |
|---|
| server | System Jira |
|---|
| serverId | b66650ca-af1e-397f-81f5-9d94924a0a26 |
|---|
| key | ESFC-745750 |
|---|
|
Fixed cross-tenant vulnerability allowing regeneration of external share secrets
Addressed a security issue where attackers could regenerate unlock secrets for external shares belonging to another tenant, causing JWT tokens to become invalid. This issue has been corrected.
| Jira Legacy |
|---|
| server | System Jira |
|---|
| serverId | b66650ca-af1e-397f-81f5-9d94924a0a26 |
|---|
| key | ESFC-744745 |
|---|
|
Fixed open redirect vulnerability
A vulnerability allowing attackers to redirect users to malicious websites using the data parameter in the login URL has been patched. This closes the loophole for phishing attacks through external share login redirects.
| Jira Legacy |
|---|
| server | System Jira |
|---|
| serverId | b66650ca-af1e-397f-81f5-9d94924a0a26 |
|---|
| key | ESFC-743-744 |
|---|
|
Fixed a stored XSS vulnerability where an attacker could inject malicious payloads into HTTP headers on the API Key Usage page. The vulnerability has been mitigated to prevent arbitrary JavaScript execution in the administrator’s browser.
| Jira Legacy |
|---|
| server | System Jira |
|---|
| serverId | b66650ca-af1e-397f-81f5-9d94924a0a26 |
|---|
| key | ESFC-742743 |
|---|
|
Fixed infinite loading screen when exporting CSV from Global Settings
Resolved an issue where attempting to export a CSV file from the global settings page would result in an infinite loading screen. This was caused by the system trying to download too many Confluence pages at once. The export limit has been reduced from 500 to 100 pages, ensuring smooth CSV exports.
| Jira Legacy |
|---|
| server | System Jira |
|---|
| serverId | b66650ca-af1e-397f-81f5-9d94924a0a26 |
|---|
| key | ESFC-738742 |
|---|
|
Fixed external shared link being cut off in edit mode
Addressed a display issue where inserting an external share URL in edit mode would cause the URL window to be cut off. The window is now fully visible during editing.
| Jira Legacy |
|---|
| server | System Jira |
|---|
| serverId | b66650ca-af1e-397f-81f5-9d94924a0a26 |
|---|
| key | ESFC-723 |
|---|
|
Solved an issue where the comment tab would jitter on shared pages. The tab now loads smoothly, and improvements were made to prevent white flashes when loading the edit view, particularly in dark mode.
| Jira Legacy |
|---|
| server | System Jira |
|---|
| serverId | b66650ca-af1e-397f-81f5-9d94924a0a26 |
|---|
| key | ESFC-393 |
|---|
|
...