Magento is releasing new versions of Magento Commerce and Open Source to improve product security and functionality:
Magento Open Source and Commerce 2.2.1
Magento Open Source and Commerce 2.1.10
Magento Open Source and Commerce 2.0.17
These releases contain almost 15 security changes that help close cross-site request forgery (CSRF), unauthorized data leak, and authenticated Admin user remote code execution vulnerabilities. Magento Commerce and Open Source 2.2.1, 2.1.10, and 2.0.17 also contain over 40 functional fixes, too, including significant contributions from community members.
We strongly recommend that all merchants upgrade to these versionsas soon as is reasonably possible.