Better read this announcement immediately if you’ve updated to 2.1.1 within the last few days. It’s quite likely you need to go to 2.1.2 asap as the security on 2.1.1 was compromised.

This security hole does NOT apply to people still on 2.1 (but I imagine if you were planning to upgrade, you should go directly to 2.1.2…).