[1.6.x] Fixed #23431 -- Allowed inline and hidden references to admin fields.

This fixes a regression introduced by the 53ff096982 security fix. Thanks to @a1tus for the report and Tim for the review. refs #23329. Backport of 342ccbd from master
2025-11-07 07:15:35 +00:00 · 2014-09-04 17:04:53 -04:00
parent 731654197c
commit a7af6ad96a
8 changed files with 82 additions and 4 deletions
--- a/docs/releases/1.6.8.txt
+++ b/docs/releases/1.6.8.txt
@@ -0,0 +1,12 @@
+==========================
+Django 1.6.8 release notes
+==========================
+
+*Under development*
+
+Django 1.6.8 fixes a regression in the 1.6.6 security release.
+
+Bugfixes
+========
+
+* Allowed inline and hidden references to admin fields (:ticket:`23431`).