GridServer 5.2.1 Hotfix4 has been released. Here are the release notes:

================================================================================
Affected Components for 5.2.1_hotfix04

The following components are updated by this hotfix:

COMDriver
Drivers-All
Engine
Engine Daemon
Operating Systems
Security
Tomcat
Web Services

================================================================================
Closed Issues in 5.2.1_hotfix04 (This Release)

COMDriver
GS-16352
Updated the DSCOM Driver to use an MSI style installer.


Drivers-All
GS-16301
Driver sessions can now only transfer task data over Direct Data Transfer for their own session.


Engine
GS-16422
Windows 64-bit Engine was incorrectly configured to start with self-ping enabled by default.  This default is now correctly set to False.

GS-16306
Engine log directories no longer allow directory browsing.

GS-16211
The default Engine JRE has been updated to Java 1.8.0_241.

GS-16187
Engines are now using their internal ID for routing instead of Engine Name, preventing interruption of service when Engines are renamed.


Engine Daemon
GS-16129
Fixed an issue that enabled downloading files from log folders on the Engine when "Allow Download Logs" was set to False.

GS-15753
Created DS_USE_SNAT_FQDN environment variable for the Engine to always use a fully-qualified domain name for routing instead of IP address in deployments which use dynamic IP address allocations.


Operating Systems
GS-16359
Amazon Linux and Amazon Linux 2 are now supported operating systems.


Security
GS-16372
Engine Daemon URLs are now validated against an internal list before allowing redirection.

GS-16186
The jquery library has been updated to version 3.4.1.

GS-16182
The prototypejs library has been updated to version 1.7.3.

GS-16184
Driver and Engine error reports no longer include stack traces.

GS-16179
User inputs in the Manager Admin Interface are all sanitized before storage.

GS-16180
Removed extraneous Apache Tomcat default-installed files.
As we cannot update files from CATALINA_BASE into an already-installed Manager via a Hotfix, users will need to update those files manually.
In this case, $DS_MANAGER/webapps/livecluster/conf/web.xml needs to be updated manually.  To remove the Tomcat default error page, add the following block to this file:
<error-page>
        <exception-type>java.lang.Throwable</exception-type>
        <location>/error.jsp</location>
</error-page>


Tomcat
GS-16326
Apache Tomcat has been updated to version 8.5.53.


Web Services
GS-16178
Web Services API inputs via XML are all being sanitized prior to processing.

================================================================================

To download this hotfix, login to the Support Portal and navigate to Downloads > Hotfixes > AvailableDownloads > DataSynapse > GridServer > 5.2.1.