Movable Type 7 r.5505 (7.906.0) Release Notes

This version includes several bug fixes and security updates of TinyMCE.

New and Improved Features

• Smarty has been updated from 4.3.4 to 4.5.3 (MTC-29663)
• Updated ADOdb from 5.22.6 to 5.22.7 (MTC-29691)
• Added an option to prevent public file information (FileInfo) from being imported when importing a site. If the “Omit import” checkbox for public file information is enabled, it will not be imported (MTC-29773)
• Added the ability to output the value of any website by specifying the id attribute for the WebsiteURL and WebsitePath tags (MTC-29257)
• Added the Configuration Directive SuperuserRespectsDataAPIDisableSite to force system administrators to set DataAPIDisableSite (MTC-29694)
• Added the height attribute to the IMG element in the HTML output from the image block in the content type block editor (MTC-29728)
• When a site import is finished, whether it was successful or not, the fact that it has finished is now logged (MTC-29770
• Improved the method for detecting supported image types in the system check (MTC-29738)

Resolved issues

• Fixed the Content Data Selection for Content Fields of Content Type would not display correctly (SUPPORT-489)
• Fixed the year character of local languages contained in the output of MTArchiveTitle tag would be output as a numeric character reference for some archive types (SUPPORT-369)
• Fixed the selected Blog ID not to remain after resetting the site after selecting it in the Site Export page (MTC-29703)
• Fixed to be possible to give priority to existing Archive Mappings in the vacant of a preferred Archive Mapping. (MTC-29752)
• Fixed the asset association not to disappear and the URL to convert at importing a site that contains Custom Fields (MTC-29709)
• Fixed the selected blog ID would remain after resetting the site after selecting it in the site export (MTC-29703)
• Fixed to be possible to make existing archive mappings take precedence when there were no priority archive mappings (MTC-29752)
• Fixed the asset mapping would sometimes disappear and URL conversion would not occur when importing a site that contained custom fields (MTC-29709)
• Fixed an issue where some objects could not inherit old parameters due to a callback flaw when performing replacements (MTC-29697)
• Fixed an error occurred in the general settings when creating a dynamic template on a site that had not been configured for server-side includes (MTC-29746)
• Fixed the thumbnail display of article assets was in the way and prevented you from being able to move to the asset editing screen (MTC-29701)
• Fixed specifying an ID in DataAPIDisableSite would still allow you to display blog_id and IncludeBlogs in data-api.cgi/v4/search (MTC-27069)
• Fixed, in environments other than PSGI, an unnecessary phrase was displayed on the theme list screen after changing the theme (MTC-29732)
• Changed the lower limit of the Perl system requirements from 5.16.0 to 5.16.3 (MTC-29695)
• Fixed the mt-wizard.cgi cannot be advanced when the Perl version is outside the supported range (MTC-29693)
• Fixed the current Perl version displayed correctly when checking the version (MTC-29699)
• When a core module is missing in the system check, the message “This module is not available” is now displayed instead of “This module may cause unexpected behavior” (MTC-29692)
• Fixed errors could occur in the category content field (MTC-29661) -Fixed to delete ICC profiles that to be “as damaged” in libpng 1.6 (MTC-29714)
• Improved the performance of the new role creation screen and editing screen when there are many content types (MTC-29713, MTC-29680)
• Fixed the warning about the plugin being disabled due to an error occurring during loading does not continue to appear (MTC-29706)
• Fixed to ignore, no as error, when stored irregular values in the display options (MTC-29687)

Dynamic Publishing

• Improved the compilation process of MT tags to Smarty in dynamic publishing (MTC-29308)
• Reduced the number of temporary variables in PHP for the inside_archive_list stash (MTC-29662)
• Improved loading mechanism from database in PHP (MTC-28145, MTC-28145, MTC-29660)
• Fixed specifying sort_by="score" and min_comment="1" at the same time in PHP would cause a SQL error (MTC-29655)
• Added comments such as “unreachable” to unused methods and unreachable implementations in PHP (MTC-29659)
• Fixed an issue where the MTArchiveList of Weekly Archives placed inside a nested dynamic template would not work correctly (MTC-29654)
• PHP’s ifarchivetypeenabled now avoids double escaping (MTC-29683)
• Fixed an issue where ORA-00904 would occur when searching for users using get_latest_touch with oracle+php (MTC-29696)
• The incorrect field was declared in PHP’s class.mt_content_field.php, so it was deleted (MTC-29658)

JavaScript Libraries

• Updated the JavaScript SDK for the Movable Type Chart API (MTC-29754)
• Updated the mt-data-api-sdk-js (MTC-29792)
• Resolved the issue by examining the dependencies in package.json (MTC-27286)
• The changes that were applied only to the movabletype repository were also applied to mt-chart-api-sdk-js (MTC-29740)
• Resolved the differences between mt-static and package.json (MTC-29784)
• Removed unnecessary modules and code from package.json (MTC-29785)

AMI Edition

• Fixed an issue where the query string was not passed in dynamic publishing when the web server was nginx (MTC-9414)

Sync.pack (Movable Type Advanced)

• Added a mode that forcibly uses the connecting host in FTP passive mode (CLOUD-408)
• Changed the item name of the “Serve all files” checkbox in server delivery to “Serve files that have not been updated” (MTC-29751)

Security fixes and improvements

• Updated TinyMCE in the TinyMCE6 plugin to 6.8.4 (MTC-29710)
• Disabled insertion of noscript elements in the TinyMCE5 plugin (MTC-29711)
• Prevented XSS by embedding TinyMCE5 plugin and TinyMCE6 plugin objects (MTC-29712)