We released an updated version of Apigee X (1-11-0-apigee-1)

## Announcement On August 15, 2023, we released an updated version of Apigee X (1-11-0-apigee-1). **Note:** Rollouts of this release to production instances will begin within two business days and may take four or more business days to be completed across all Google Cloud zones. Your instances may not have the features and fixes available until the rollout is complete. ## Fix | Bug ID | Description | | ------------- | --------------------------------------------------------------------------------------------------------------------------------- | | **155498623** | **XPaths in maskconfigs now mask values with special characters.** | | **291746838** | **Implemented fix to prevents service callouts from overwriting timeouts on clients used by other policies or target endpoints.** | | **274663992** | **Fixed issue in AccessControl policy to avoid race condition.** | | **294441215** | **Implemented fix to resolve quota count in the Quota policy.** | | **287659763** | **Fixed issue resulting causing incorrect target endpoint URLs to display in debug sessions.** | | **283285631** | **Fixed issue where base environment debug sessions were not recorded for Pay-as-you-go (updated attributes) organizations.** | | **196216798** | **Fixed issue with access to monetization flow variables in the post client flow.** | | **N/A** | **Upgraded infrastructure and libraries.** | ## Security | Bug ID | Description | | ------------------------ | ------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------ | | **281112632, 294892189** | **Security fix for apigee-runtime.** This addresses the following vulnerability: [CVE-2023-28867](https://nvd.nist.gov/vuln/detail/CVE-2023-28867) [CVE-2022-37734](https://nvd.nist.gov/vuln/detail/CVE-2022-37734) [CVE-2023-2976](https://nvd.nist.gov/vuln/detail/CVE-2023-2976) | | **294891556** | **Security fix for apigee-emulator, apigee-mock-server, and apigee-runtime.** This addresses the following vulnerability: [CVE-2021-31684](https://nvd.nist.gov/vuln/detail/CVE-2021-31684) | | **287207717** | **Fixed sandbox bypass vulnerability.** | | **286993631** | **Fixed message template injection vulnerability.** |