0.5.4 changelog

pages/docs/changelog.mdx

@@ -4,6 +4,27 @@ title: FOSSBilling Changelog
 
 # FOSSBilling Changelog
 
+## 0.5.4 (7-5-23)
+
+### Security
+ - Exception / error messages now have HTML escaped before sending them to the browser. [Vulnerability report](https://huntr.dev/bounties/76a3441d-7f75-4a8d-a7a0-95a7f5456eb0/). [CVE-2023-3521](https://nvd.nist.gov/vuln/detail/CVE-2023-3521)
+ - HTML embedded in company info is now escaped. [Vulnerability report](https://huntr.dev/bounties/f3782eb1-049b-4998-aac4-d9798ec1c123/)
+
+### New Features
+ - You can now whitelist IP addresses from rate-limiting using the `rate_limit_whitelist` configuration property.
+ - Tables columns in the administrator panel may now be sorted by clicking on them.
+ - FOSSBilling now includes a fallback option to apply patches after updating (Can be performed by navigating to `example.com/run-patcher`).
+ - You may now optionally configure a username prefix when configuring server managers.
+
+### Bug Fixes
+ - Fixed an issue when trying to reset purchased API keys from the administrator panel.
+ - The admin theme dashboard will now correctly apply dark mode to the charts.
+ - We've sped up how quickly the selected theme is applied within the admin panel, completely removing or reducing the "flash" that could be seen of the wrong theme mode. (Dark VS light mode)
+ - 6 different search statements were being created incorrectly which resulting in errors when trying to search within the effected modules, this has been fixed. 
+
+### Changes
+ - We've cleaned up the exception messages to help reduce the number of translatable strings and improve consistency.
+
 ## 0.5.3 (6-30-23)
 
 ### Security