CAS Server 3.4.2.1 Release

 CAS 3.4.2.1 is a security release that addresses XSS vulnerabilities in the following pages:

• CAS Logout

• CAS Service Management Tool Failed Authorization Page

• CAS Post Response Page

This release also enables the Services Management tool and blocks all service urls that are not http, https, imap, and imaps.