Removing the zimbraLowestSupportedAuthVersion >= 2 check (in 10.1.4) is to make upgrading older systems easier, without requiring a new minimum auth version. This is not directly related to XSS, just a convenience for them to update the information in the article.
Statistics: Posted by sarausa — Tue Apr 29, 2025 1:54 am