[MEDIUM] Ibexa Admin UI vulnerable to DOM-based Cross-site Scripting in file upload widget

PKSA-k3xd-28dp-hq98 CVE-2024-39318 GHSA-qm44-wjm2-pr59

Affected package: ibexa/admin-ui

Affected version: >=4.6.0-beta1,<4.6.9

Reported by:
GitHub