[Master issue] Prepare 5.4.0 and/or 6.0.0 release #3968
Description
5.4.0 (already a feature release since we've updated libraries)
- fix mail module [refactor] Update Mail Module to Jakarta Mail 2.0.0 #3994
- implement map:merge#2 for 5.4.0 Implement map:merge#2 #4002
if possible align with the release:
- Update exist-db.org with eXist 5.3.0 and updated core apps
- Fix Dashboard login issue
5.4.1 or 5.5.0
- New eXide release with fixes:
- Repair opening document in eXide [BUG] Cannot open document: "Open" button does not work eXide#322
- New Application Menu was disabled [BUG] New Application menu entry missing eXide#323
- Fix the issue for users, whereby when the update to a newer eXist-db version, the Dashboard etc, doesn't work and they are told they have to "Clear the Browser" cache to fix it. Could it be a cookie issue?
- Signing and notarization - [BUG] Unable to notarise exist-db installer for macOS #3961
- Ensure updated Package Service is released for inclusion in the eXist-db release - [fix] handle exceptions in get-package-meta existdb-packageservice#22
- publish updated “howto release” document [doc] update versioning and release guide #3962 + Update Homebrew release notes #3952
- Github-release-plugin: fix link to release notes and improve layout
- fix unary lookups [fix] unary lookups #3966
- NPE in SimpleACLPermission [BUG] NPE in SimpleACLPermission leads to server errors (status code 500) #4009
6.0.0
- Maps* - a follow-on PR just for 6.0.0 to Switch map:merge from use-last to use-first as per XQuery spec #3738
- Security - core+Saxon - add option to limit RFI in fn:doc etc* - [feature] Allow external HTTP requests to be limited to authenticated users or blocked altogether #3927
- Security - core* - Apache XML-RPC CVE-2019-17570 / CVE-2016-5002 - Apache XML-RPC CVE-2016-5002 #3063 Update Apache XML-RPC #3934 (introduces a breaking change)
- Security CVE-2021-45046 Log4shell 2.0 Bump log4j.version from 2.15.0 to 2.16.0 #4119 (reverted) 650e6d0