This release contains security related fixes that address a cross-site-scripting (XSS) vulnerability in the development only 'missing route' and 'duplicate named route' error pages. We recommend that all users of 3.4 update.