From d338504a40aea3109ce6ddeb4dd356d5a162123d Mon Sep 17 00:00:00 2001 From: Karl Kemister-Sheppard Date: Thu, 4 Sep 2025 15:28:58 +1000 Subject: [PATCH 1/2] DOC-2309: Links inserted with & encoding are now decoded to & before inserting. --- modules/ROOT/pages/8.1.0-release-notes.adoc | 7 +++++++ 1 file changed, 7 insertions(+) diff --git a/modules/ROOT/pages/8.1.0-release-notes.adoc b/modules/ROOT/pages/8.1.0-release-notes.adoc index 3e7a6181b4..dbd5ddc10a 100644 --- a/modules/ROOT/pages/8.1.0-release-notes.adoc +++ b/modules/ROOT/pages/8.1.0-release-notes.adoc @@ -109,6 +109,13 @@ The following premium plugin updates were released alongside {productname} {rele // CCFR here. +=== Links inserted with `+&+` encoding are now decoded to `&` before inserting +// #TINY-12504 + +Previously, when pasting URLs containing encoded ampersands (`+&+`) into {productname}, the encoded values were preserved, resulting in double encoding when the link was inserted into content. For example, a pasted link such as `https://example.com/search?&query=example` would appear in the editor source as `https://example.com/search?&query=example`. + +This caused issues when openingsuch links, as the URLs became invalid. In {release-version}, {productname} now automatically decodes `+&+` back to `+&+` before inserting the link, ensuring that pasted URLs remain valid and functional in both the editor and the source code. + [[security-fixes]] == Security fixes From af22702423b025593a1ea0c496e1083941cdbc99 Mon Sep 17 00:00:00 2001 From: Karl Kemister-Sheppard Date: Thu, 4 Sep 2025 15:57:17 +1000 Subject: [PATCH 2/2] DOC-3209: Fix rendering issues. --- modules/ROOT/pages/8.1.0-release-notes.adoc | 15 +++++++++++++-- 1 file changed, 13 insertions(+), 2 deletions(-) diff --git a/modules/ROOT/pages/8.1.0-release-notes.adoc b/modules/ROOT/pages/8.1.0-release-notes.adoc index dbd5ddc10a..f99967dc58 100644 --- a/modules/ROOT/pages/8.1.0-release-notes.adoc +++ b/modules/ROOT/pages/8.1.0-release-notes.adoc @@ -112,9 +112,20 @@ The following premium plugin updates were released alongside {productname} {rele === Links inserted with `+&+` encoding are now decoded to `&` before inserting // #TINY-12504 -Previously, when pasting URLs containing encoded ampersands (`+&+`) into {productname}, the encoded values were preserved, resulting in double encoding when the link was inserted into content. For example, a pasted link such as `https://example.com/search?&query=example` would appear in the editor source as `https://example.com/search?&query=example`. +Previously, when pasting URLs containing encoded ampersands `+&+` into {productname}, the encoded values were preserved, resulting in double encoding when the link was inserted into content. For example, a pasted link such as -This caused issues when openingsuch links, as the URLs became invalid. In {release-version}, {productname} now automatically decodes `+&+` back to `+&+` before inserting the link, ensuring that pasted URLs remain valid and functional in both the editor and the source code. +[source,text] +---- +https://example.com/search?&query=example +---- +would appear in the editor source as + +[source,text] +---- +https://example.com/search?&query=example +---- + +This caused issues when opening such links, as the URLs became invalid. In {release-version}, {productname} now automatically decodes `+&+` back to `+&+` before inserting the link, ensuring that pasted URLs remain valid and functional in both the editor and the source code. [[security-fixes]]