Version 5.7.1

On April 14, 2021, WordPress 5.7.1 was released to the public.

Installation/Update Information

To get this version, update automatically from the Dashboard > Updates menu in your site’s admin area or visit https://ww.wp.xz.cn/download/release-archive/.

For step-by-step instructions on installing and updating WordPress:

• Updating WordPress

If you are new to WordPress, we recommend that you begin with the following:

• New To WordPress – Where to Start
• First Steps With WordPress or Upgrading WordPress Extended
• WordPress Lessons

Summary

Security updates

Two security issues affect WordPress versions between 4.7 and 5.7. If you haven’t yet updated to 5.7, all WordPress versions since 4.7 have also been updated to fix the following security issues:

• thank you SonarSource for reporting an XXE vulnerability within the media library affecting PHP 8
• thanks Mikael Korpela for reporting a data exposure vulnerability within the latest posts block and REST API

Thank you to all of the reporters for privately disclosing the vulnerabilities. This gave the security team time to fix the vulnerabilities before WordPress sites could be attacked.

Props to Adam Zielinski, Pascal Birchler, Peter Wilson, Juliette Reinders Folmer, Alex Concha, Ehtisham Siddiqui, Timothy Jacobs and the WordPress security team for their work on these issues.

Maintenance updates

WordPress 5.7.1 also fixes 26 regressions introduced in version 5.7:

Fixed Core tickets from Trac:

• #52787 – Empty array for non-single post meta breaks post save through REST API
• #52822 – PHPMailer change in WordPress 5.7 breaks working sites
• #52670 – Admin pointer arrow border color darker than pointer content
• #52713 – Reverse logic in wp_robots function and filter
• #52743 – Hardcoded SVG image URLs on WP 5.7 About screen
• #52750 – WP 5.7 colors inconsistent in get_option( 'admin_color' ) since color contrast changes
• #52751 – UI issue on Privacy Policy Guide page
• #52756 – Duplicate video URLs on WP 5.7 About screen
• #52758 – 5.7 About Page: Image comparison doesn’t work on first load on some browsers
• #52760 – Color not accessibility for AA
• #52764 – Classic editor adding empty tags in some media embed situations
• #52768 – WordPress post URL oEmbed rendering blocked by iframe lazy-loading
• #52783 – Health Check mis-reports https functionality in certain situations
• #52789 – Gallery layout block adds all media items when changing an image
• #52816 – Post metabox style Twenty Seventeen has a border
• #52826 – New wp_getimagesize() causing unexpected failures
• #52834 – Reset password screen: improve buttons layout for better i18n
• #52891 – Privacy: print screen reader text message
• #52894 – The wp_sanitize_script_attributes function added in version 5.7 does not escape attributes in some cases
• #52932 – Rest Api enum validation does not work correctly WordPress 5.7
• #52961 – Add ‘object-position’ as an allowed CSS attribute
• #52981 – Twenty Twenty-One: Update IE specific editor stylesheet

Fixed Block editor issues from GitHub:

• PR30218 – Core Data: Use getAuthors for showCombobox
• PR30524 – Editor: Revert (#27717) save editors value on change
• PR30122 – Gallery: Set addToGallery prop to false when images don’t have IDs
• PR29809 – Revert: Show empty paragraphs on fronted
• PR29860 – Try: Fix gallery item clicking
• PR29920 – Fix sibling block inserter displaying at end of block list
• PR30125 – Block Editor: Ensure that uncategorized block types are properly handled
• PR30243 – Add object-position to allowed inline style attributes list

The 5.7.1 release was led by @peterwilsoncc and @audrasjb.

Thank you to everyone who contributed to WordPress 5.7.1:

99w, Adam Silverstein, Andrew Ozz, annalamprou, anotherdave, Ari Stathopoulos, Ayesh Karunaratne, bobbingwide, Brecht, Daniel Richards, David Baumwald, dkoo, Dominik Schilling, dragongate, eatsleepcode, Ella van Durpe, Erik, Fabian Pimminger, Felix Arntz, Florian TIAR, gab81, Gal Baras, Geoffrey, George Mamadashvili, Glen Davies, Greg Ziółkowski, grzim, Ipstenu (Mika Epstein), Jake Spurlock, Jayman Pandya, Jb Audras, Joen A., Johan Jonk Stenström, Johannes Kinast, John Blackbourn, John James Jacoby, Jonathan Desrosiers, Josee Wouters, Joy, k3nsai, Kelly Choyce-Dwan, Kerry Liu, Marius L. J., Mel Choyce-Dwan, Mikhail Kobzarev, mmuyskens, Mukesh Panchal, nicegamer7, Otshelnik-Fm, Paal Joachim Romdahl, palmiak, Pascal Birchler, Peter Wilson, pwallner, Rachel Baker, Riad Benguella, Rinat Khaziev, Robert Anderson, Roger Theriault, Sergey Biryukov, Sergey Yakimov, SirStuey, stefanjoebstl, Stephen Bernhardt, Sumit Singh, Sybre Waaijer, Synchro, Terri Ann, tigertech, Timothy Jacobs, tmatsuur, TobiasBg, Tonya Mork, Toru Miki, Ulrich, and Vlad T.

For more information, browse the full list of changes on Trac.

List of Files Revised

wp-admin/about.php
wp-admin/credits.php
wp-admin/css/about-rtl.min.css
wp-admin/css/about.min.css
wp-admin/css/color-picker-rtl.css
wp-admin/css/color-picker-rtl.min.css
wp-admin/css/color-picker.css
wp-admin/css/color-picker.min.css
wp-admin/css/colors/blue/colors-rtl.min.css
wp-admin/css/colors/blue/colors.min.css
wp-admin/css/colors/coffee/colors-rtl.min.css
wp-admin/css/colors/coffee/colors.min.css
wp-admin/css/colors/ectoplasm/colors-rtl.min.css
wp-admin/css/colors/ectoplasm/colors.min.css
wp-admin/css/colors/light/colors-rtl.min.css
wp-admin/css/colors/light/colors.min.css
wp-admin/css/colors/midnight/colors-rtl.min.css
wp-admin/css/colors/midnight/colors.min.css
wp-admin/css/colors/modern/colors-rtl.min.css
wp-admin/css/colors/modern/colors.min.css
wp-admin/css/colors/ocean/colors-rtl.min.css
wp-admin/css/colors/ocean/colors.min.css
wp-admin/css/colors/sunrise/colors-rtl.min.css
wp-admin/css/colors/sunrise/colors.min.css
wp-admin/css/common-rtl.css
wp-admin/css/common-rtl.min.css
wp-admin/css/common.css
wp-admin/css/common.min.css
wp-admin/css/customize-controls-rtl.css
wp-admin/css/customize-controls-rtl.min.css
wp-admin/css/customize-controls.css
wp-admin/css/customize-controls.min.css
wp-admin/css/customize-widgets-rtl.css
wp-admin/css/customize-widgets-rtl.min.css
wp-admin/css/customize-widgets.css
wp-admin/css/customize-widgets.min.css
wp-admin/css/dashboard-rtl.css
wp-admin/css/dashboard-rtl.min.css
wp-admin/css/dashboard.css
wp-admin/css/dashboard.min.css
wp-admin/css/deprecated-media-rtl.css
wp-admin/css/deprecated-media-rtl.min.css
wp-admin/css/deprecated-media.css
wp-admin/css/deprecated-media.min.css
wp-admin/css/edit-rtl.css
wp-admin/css/edit-rtl.min.css
wp-admin/css/edit.css
wp-admin/css/edit.min.css
wp-admin/css/forms-rtl.css
wp-admin/css/forms-rtl.min.css
wp-admin/css/forms.css
wp-admin/css/forms.min.css
wp-admin/css/list-tables-rtl.css
wp-admin/css/list-tables-rtl.min.css
wp-admin/css/list-tables.css
wp-admin/css/list-tables.min.css
wp-admin/css/login-rtl.css
wp-admin/css/login-rtl.min.css
wp-admin/css/login.css
wp-admin/css/login.min.css
wp-admin/css/nav-menus-rtl.css
wp-admin/css/nav-menus-rtl.min.css
wp-admin/css/nav-menus.css
wp-admin/css/nav-menus.min.css
wp-admin/css/revisions-rtl.css
wp-admin/css/revisions-rtl.min.css
wp-admin/css/revisions.css
wp-admin/css/revisions.min.css
wp-admin/css/themes-rtl.css
wp-admin/css/themes-rtl.min.css
wp-admin/css/themes.css
wp-admin/css/themes.min.css
wp-admin/css/widgets-rtl.css
wp-admin/css/widgets-rtl.min.css
wp-admin/css/widgets.css
wp-admin/css/widgets.min.css
wp-admin/freedoms.php
wp-admin/includes/class-wp-privacy-policy-content.php
wp-admin/includes/class-wp-site-health.php
wp-admin/includes/image.php
wp-admin/js/common.min.js
wp-admin/js/customize-controls.min.js
wp-admin/js/customize-nav-menus.min.js
wp-admin/js/customize-widgets.min.js
wp-admin/js/edit-comments.min.js
wp-admin/js/editor-expand.min.js
wp-admin/js/editor.min.js
wp-admin/js/image-edit.min.js
wp-admin/js/nav-menu.min.js
wp-admin/js/post.min.js
wp-admin/js/privacy-tools.min.js
wp-admin/js/site-health.min.js
wp-admin/js/svg-painter.min.js
wp-admin/js/tags-box.min.js
wp-admin/js/theme.min.js
wp-admin/privacy.php
wp-content/themes/twentyeleven/readme.txt
wp-content/themes/twentyfifteen/readme.txt
wp-content/themes/twentyfourteen/readme.txt
wp-content/themes/twentynineteen/readme.txt
wp-content/themes/twentyseventeen/assets/css/editor-style.css
wp-content/themes/twentyseventeen/readme.txt
wp-content/themes/twentyseventeen/style.css
wp-content/themes/twentysixteen/readme.txt
wp-content/themes/twentyten/readme.txt
wp-content/themes/twentythirteen/readme.txt
wp-content/themes/twentytwelve/readme.txt
wp-content/themes/twentytwelve/style.css
wp-content/themes/twentytwenty/readme.txt
wp-content/themes/twentytwentyone/assets/css/ie-editor.css
wp-content/themes/twentytwentyone/assets/css/ie.css
wp-content/themes/twentytwentyone/assets/sass/01-settings/file-header.scss
wp-content/themes/twentytwentyone/package-lock.json
wp-content/themes/twentytwentyone/package.json
wp-content/themes/twentytwentyone/readme.txt
wp-content/themes/twentytwentyone/style-rtl.css
wp-content/themes/twentytwentyone/style.css
wp-includes/PHPMailer/PHPMailer.php
wp-includes/PHPMailer/SMTP.php
wp-includes/assets/script-loader-packages.php
wp-includes/blocks/latest-posts.php
wp-includes/class-wp-recovery-mode-email-service.php
wp-includes/css/customize-preview-rtl.min.css
wp-includes/css/customize-preview.min.css
wp-includes/css/dashicons.min.css
wp-includes/css/dist/block-library/editor-rtl.css
wp-includes/css/dist/block-library/editor-rtl.min.css
wp-includes/css/dist/block-library/editor.css
wp-includes/css/dist/block-library/editor.min.css
wp-includes/css/dist/block-library/style-rtl.css
wp-includes/css/dist/block-library/style-rtl.min.css
wp-includes/css/dist/block-library/style.css
wp-includes/css/dist/block-library/style.min.css
wp-includes/css/media-views-rtl.css
wp-includes/css/media-views-rtl.min.css
wp-includes/css/media-views.css
wp-includes/css/media-views.min.css
wp-includes/css/wp-pointer-rtl.css
wp-includes/css/wp-pointer-rtl.min.css
wp-includes/css/wp-pointer.css
wp-includes/css/wp-pointer.min.css
wp-includes/general-template.php
wp-includes/ID3/getid3.lib.php
wp-includes/js/autosave.min.js
wp-includes/js/backbone.min.js
wp-includes/js/clipboard.min.js
wp-includes/js/comment-reply.min.js
wp-includes/js/customize-base.min.js
wp-includes/js/customize-selective-refresh.min.js
wp-includes/js/dist/block-editor.js
wp-includes/js/dist/block-editor.min.js
wp-includes/js/dist/block-library.js
wp-includes/js/dist/block-library.min.js
wp-includes/js/dist/components.js
wp-includes/js/dist/components.min.js
wp-includes/js/dist/edit-post.js
wp-includes/js/dist/edit-post.min.js
wp-includes/js/dist/editor.js
wp-includes/js/dist/editor.min.js
wp-includes/js/dist/reusable-blocks.js
wp-includes/js/dist/reusable-blocks.min.js
wp-includes/js/dist/vendor/moment.min.js
wp-includes/js/heartbeat.min.js
wp-includes/js/jquery/jquery.form.min.js
wp-includes/js/jquery/ui/core.min.js
wp-includes/js/jquery/ui/datepicker.min.js
wp-includes/js/jquery/ui/dialog.min.js
wp-includes/js/jquery/ui/effect-pulsate.min.js
wp-includes/js/jquery/ui/effect.min.js
wp-includes/js/jquery/ui/menu.min.js
wp-includes/js/jquery/ui/slider.min.js
wp-includes/js/jquery/ui/sortable.min.js
wp-includes/js/jquery/ui/tabs.min.js
wp-includes/js/media-grid.min.js
wp-includes/js/media-models.min.js
wp-includes/js/media-views.min.js
wp-includes/js/plupload/moxie.min.js
wp-includes/js/quicktags.min.js
wp-includes/js/tinymce/plugins/wordpress/plugin.min.js
wp-includes/js/tinymce/plugins/wpeditimage/plugin.min.js
wp-includes/js/tinymce/wp-tinymce.js
wp-includes/js/underscore.min.js
wp-includes/js/wp-api.min.js
wp-includes/js/wp-backbone.min.js
wp-includes/js/wp-lists.min.js
wp-includes/js/wp-sanitize.min.js
wp-includes/js/wplink.min.js
wp-includes/kses.php
wp-includes/media.php
wp-includes/rest-api.php
wp-includes/rest-api/endpoints/class-wp-rest-posts-controller.php
wp-includes/rest-api/fields/class-wp-rest-meta-fields.php
wp-includes/robots-template.php
wp-includes/script-loader.php
wp-includes/version.php
wp-login.php

Updated packages

block-directory: 1.18.10
block-editor: 5.2.10
block-library: 2.28.7
block-directory: 1.18.12
block-editor: 5.2.11
block-library: 2.28.9
block-serialization-default-parser: 3.9.1
blocks: 7.0.6
dom: 2.16.2
dom-ready: 2.12.1
edit-post: 3.26.10
editor: 9.25.10
edit-post: 3.26.12
editor: 9.25.12
element: 2.19.1
escape-html: 1.11.1
format-library: 1.26.10
format-library: 1.26.11
hooks: 2.11.1
html-entities: 2.10.1
i18n: 3.18.0
icons: 2.9.1
interface: 1.0.6
is-shallow-equal: 3.0.1
keyboard-shortcuts: 1.13.8
priority-queue: 1.10.1
redux-routine: 3.13.1
reusable-blocks: 1.1.10
reusable-blocks: 1.1.11
rich-text: 3.24.8
server-side-render: 1.20.8