CVE-2021-22261

Name of the Vulnerable Software and Affected Versions: GitLab versions 13.9 through 14.0.8 GitLab versions 14.1 through 14.1.3 GitLab versions 14.2 through 14.2.1

Description: A stored Cross-Site Scripting issue in the Jira integration allows an attacker to execute arbitrary JavaScript code on the victim's behalf via malicious Jira API responses.

Recommendations: For GitLab versions 13.9 through 14.0.8, update to version 14.0.9 or later. For GitLab versions 14.1 through 14.1.3, update to version 14.1.4 or later. For GitLab versions 14.2 through 14.2.1, update to version 14.2.2 or later.