• Various security hardening.
• Taxonomy query hardening.
• Prevent sniffing out user names of non-authors by using canonical redirects.
• Media security fixes.
• Improves file upload security on hosts with dangerous security settings.
• Cleans up old WordPress import files if the import does not finish.
• Introduce “clickjacking” protection in modern browsers on admin and login pages.

This release addresses a vulnerability that allowed Contributor-level users to improperly publish posts.

Make sure to update this ones. Lots of WordPress sites have been hacked recently.

This security release is required if you have any untrusted user accounts, but it also comes with important security enhancements and hardening. All WordPress users are strongly encouraged to update.

The WordPress 3.1 Release Candidate 4 is also available which has the security updates for 3.0.5 along with several other bug fixes.

WordPress 3.0.3 is available and is a security update for all previous WordPress versions.

This release fixes issues in the remote publishing interface, which under certain circumstances allowed Author- and Contributor-level users to improperly edit, publish, or delete posts.

These issues only affect sites that have remote publishing enabled.

Remote publishing is disabled by default, but you may have enabled it to use a remote publishing client such as one of the WordPress mobile apps. You can check these settings on the “Settings ? Writing” screen.

Make sure you get your wordpress installs updated.

This maintenance release addresses about 50 minor issues. The testing many of you contributed prior to the release of 3.0 helped make it one of the best and most stable releases to date.

Download WordPress 3.0.1 or update automatically from the Dashboard > Updates menu in your site’s admin area.

Here are the major highlights:

• WordPress and WordPress MU have merged, allowing the management of multiple sites (called Multisite) from one WordPress installation.
• New default theme “Twenty Ten” takes full advantage of the current features of WordPress.
• New custom menu management feature, allows creation of custom menus combining posts, pages, categories, tags, and links for use in theme menus or widgets.
• Custom header and background APIs.
• Contextual help text accessed under the Help tab of every screen in the WordPress administration.
• Ability to set the admin username and password during installation.
• Bulk updating of themes with an automatic maintenance mode during the process.
• Support for shortlinks.
• Improved Custom post types and custom taxonomies including hierarchical (category-style) support. (Try the Custom Post Type UI or GD Custom Posts And Taxonomies Tools plugins to see the possibilities.)
• A lighter admin color scheme to increase accessibility and put the focus more squarely on your content.