Data Sandbox is an isolated environment using which data can be exposed for purpose of conducting data science experiments. Data can be uploaded to sandbox via manual upload or via data pipeline.
Admin Setting- S3 as Storage / Network Storage based on the configuration.
Data Center: MongoQL connector is supported to create Data Store.
POST call for Data As API.
Security Remediations:
Log4j upgrade to 2.17.1
UI library updates
CORS Multiple origin support
Enhancements
Enhancements in the ‘Publish to group’ function of Dashboard.
When a new user gets added to a group, all the dashboards published to the group will be accessible to the user. When the user gets removed from that group, the user losses access to the dashboard as well.
Data As API Enhancement
Option of Custom Message for No Data
Response code, status code Enhancement
Fixes
Some more Security Remediations:
Unauthorized Access to Document (getWikiByDocld, getdocumentinfobyid)
Unauthorized File Upload (Bulk user creation)
Unauthorised Access to Notifications
User Data Disclosure- Prevent access of other user details
Persistent Cross-Site Scripting
Username Enumeration (Generis message for forgotten password functionality)
Changes and fixes for SSO support in Multitenant
Admin Module – UI Additions for Pipeline multiple namespace support
Data set query change: using the ‘db’ variable instead of database name in a query
Session Token in URL Security Fix
Input Validation Weaknesses Security Fix
Untrusted Inclusion of Code from Remote Hosts Security Fix
HTTP Security Headers Not Implemented Security Fix