This is a security release of the Drupal 9 series.
This release fixes security vulnerabilities. Sites are urged to update immediately after reading the notes below and the security announcements:
No other fixes are included.
Which release do I choose? Security coverage information
- Drupal 9.3.x will receive security coverage until December 8, 2022 when Drupal 9.5.0 is released.
- Sites on 9.2.x or earlier should update immediately to Drupal 9.2.21 instead of this release (but update to 9.3 or higher soon).
- Versions of Drupal 9 prior to 9.2.x are end-of-life and do not receive security coverage.
- Versions of Drupal 8 are end-of-life and do not receive security coverage.
Important update information
Drupal 9.3 core now requires
guzzlehttp/guzzle6.5.7 or higher (up from 6.5.6).No changes have been made to the
.htaccess,web.config,robots.txt, or defaultsettings.phpfiles in this release, so updating custom versions of those files is not necessary if your site is already on the previous release.
Release type:
Security update