Added 3.4.3 release notes

czpython · czpython · commit 92a719c4affc · 2017-04-25T13:35:47.000-04:00
diff --git a/CHANGELOG.txt b/CHANGELOG.txt
@@ -20,9 +20,9 @@
 === 3.4.3 (2017-04-24) ===
 
 * Fixed a security vulnerability in the page redirect field which allowed users
-  to insert javascript code.
+  to insert JavaScript code.
 * Fixed a security vulnerability where the ``next`` parameter for the toolbar login
-  was not sanitized and could point to another domain.
+  was not sanitised and could point to another domain.
 
 
 === 3.4.2 (2017-01-23) ===
diff --git a/docs/upgrade/3.4.3.rst b/docs/upgrade/3.4.3.rst
@@ -0,0 +1,23 @@
+.. _upgrade-to-3.4.3:
+
+###################
+3.4.3 release notes
+###################
+
+*******************
+What's new in 3.4.3
+*******************
+
+Security Fixes
+==============
+
+* Fixed a security vulnerability in the page redirect field which allowed users
+  to insert JavaScript code.
+* Fixed a security vulnerability where the ``next`` parameter for the toolbar login
+  was not sanitised and could point to another domain.
+
+
+Thanks
+======
+
+Thanks to Mark Walker and Anthony Steinhauser for reporting the security issues.
diff --git a/docs/upgrade/index.rst b/docs/upgrade/index.rst
@@ -13,6 +13,7 @@ makes changes to your database.
 .. toctree::
     :maxdepth: 1
 
+    3.4.3
     3.4.2
     3.4.1
     3.4
