X-Git-Url: https://vcs.fsf.org/?a=blobdiff_plain;f=release-notes%2F5.20.0.md;h=cd3afb413bf5513dba033a2cf79ba1ef83de76bf;hb=99ed334994ecdf06a8a1c573157c442f31385348;hp=53b1f7e495224aaf84b8a1e61cf1bb4e0b7fee55;hpb=f203236e13f73481d39ad1387bffe4777f250f95;p=civicrm-core.git
diff --git a/release-notes/5.20.0.md b/release-notes/5.20.0.md
index 53b1f7e495..cd3afb413b 100644
--- a/release-notes/5.20.0.md
+++ b/release-notes/5.20.0.md
@@ -21,6 +21,10 @@ Released December 4, 2019
| **Introduce features?** | **yes** |
| **Fix bugs?** | **yes** |
+## Security advisories
+
+- **[CIVI-SA-2019-24](https://civicrm.org/advisory/civi-sa-2019-24-csrf-in-apiv4-ajax-end-point): Cross-site request forgery in APIv4 AJAX endpoint**
+
## Features
### Core CiviCRM
@@ -1052,7 +1056,7 @@ Released December 4, 2019
This release was developed by the following code authors:
a-n The Artists Information Company - William Mortada; AGH Strategies - Alice
-Frumin, Andrew Hunt, Eli Lisseck; Agileware - Pengyi Zhang; Alexy
+Frumin, Andie Hunt, Eli Lisseck; Agileware - Pengyi Zhang; Alexy
Mikhailichenko; Australian Greens - Seamus Lee; Christian Wach; CiviCoop - Jaap
Jansma; CiviCRM - Coleman Watts, Tim Otten; CiviDesk - Yashodha Chaku;
CompuCorp- Camilo Rodriguez, Davi Alexandre, Omar Abu Hussein; Dave D;
@@ -1077,6 +1081,6 @@ Oliver; Skvare - Mark Hanna; OSSeed Technologies LLP - Sushant Paste
## Feedback
-These release notes are edited by Alice Frumin and Andrew Hunt. If you'd like
+These release notes are edited by Alice Frumin and Andie Hunt. If you'd like
to provide feedback on them, please log in to https://chat.civicrm.org/civicrm
and contact `@agh1`.