On September 9, 2021 WordPress version 5.8.1 was released fixing three vulnerabilities. The official blog post states: "The Lodash library has been updated to version 4.17.21 in each branch to incorporate upstream security fixes." The Lodash changelog states that a command injection vulnerability was recently patched. See references.
INJECTION
No
2021-09-09 (about 11 months ago)
2021-09-09 (about 11 months ago)
2022-05-19 (about 2 months ago)