Release Date 30th June 2026
- Security - ACF PRO's save handler for WooCommerce order fields now verifies security nonces and only attaches on the order edit screen, preventing unauthenticated field value updates for stores utilizing HPOS
- Security - The Flexible Content "Rename Layout" modal no longer allows for the execution of a potential stored XSS vulnerability
- Security - A default limit of 1000 has been applied to user-contributed choices for Checkbox, Radio, and Select fields to improve security, with a new
acf/fields/max_appended_choicesfilter available for customization - Security - Special characters within LIKE patterns are now fully escaped in
wp_optionsqueries via$wpdb->esc_like()