WordPress Security and Maintenance Releases
WordPress 4.2.3 is now available. This is a security release for all previous versions and it’s strongly recommended that you to update your sites immediately.
The earlier versions are affected by a cross-site scripting vulnerability, which could allow users with the Contributor or Author role to compromise a site. Also fixed an issue where it was possible for a user with Subscriber permissions to create a draft through Quick Draft. It also contains 20 bug fixes from version 4.2.
Why It’s Important To Update WordPress
How Often Do WordPress Updates Get Released?