Akeles Out of Office Assistant for Jira 4.0.1 is vulberable to Cross Site Scripting (XSS) via the Jira fullName parameter.Referenceshttps://www.y-security.dehttps://docs.akeles.com/ooo/release-notes-for-4-2-0