12.2.17 (2022-11-22)

Breaking Changes

core

• Existing iframe usages may have security-sensitive attributes applied as an attribute or property binding in a template or via host bindings in a directive. Such usages would require an update to ensure compliance with the new stricter rules around iframe bindings.

core

| Commit | Type | Description | | -- | -- | -- | | b871db57da | fix | hardening attribute and property binding rules for <iframe> elements (#48059) |

Special Thanks

Andrew Kushnir, Andrew Scott, George Looshch, Joey Perrott and Paul Gschwendtner

<!-- CHANGELOG SPLIT MARKER -->

<a name="13.3.12"></a>