5.3.8

What's Changed

• [SS-2024-002] Detect if debugging in HTML context by @GuySartorelli in #11553
• [CVE-2024-47605] Wrap embeds containing script or style tags in an iframe by @GuySartorelli in #11554
• [CVE-2024-53277] Sanitise form messages against XSS attacks by @GuySartorelli in #11555
• FIX Escape user input from an HTML context. by @GuySartorelli in #11556

Full Changelog: 5.3.7...5.3.8