WordPress 4.2.3 is now available for download and upgrade.
This is a security release for all previous versions and we strongly encourage you to update your sites immediately.
WordPress versions 4.2.2 and earlier are affected by a cross-site scripting vulnerability, which could allow users with the Contributor or Author role to compromise a site.
Version 4.2.3 fixed an issue where it was possible for a user with Subscriber permissions to create a draft through Quick Draft and it contains fixes for 20 bugs from 4.2.
Download WordPress 4.2.3 or venture over to Dashboard → Updates and simply click “Update Now.” Sites that support automatic background updates are already beginning to update to WordPress 4.2.3.