On September 9, 2021 WordPress version 5.8.1 was released fixing three vulnerabilities.
The official blog post states:
"The Lodash library has been updated to version 4.17.21 in each branch to incorporate upstream security fixes."
The Lodash changelog states that a command injection vulnerability was recently patched. See references.