How are critical Atlassian severity vulnerabilities handled in Elasity?
Once a Critical Security Advisory is published for an Atlassian product, Elasity customers will be notified and the appropriate Maintenance Release that addresses that critical vulnerability will be immediately scheduled for product upgrade and testing. Lower severity security vulnerabilities are addressed via the standard Elasity quarterly upgrade process.