From c28674388b20bcf386fc68f47fc73d0de9465259 Mon Sep 17 00:00:00 2001 From: "opensearch-trigger-bot[bot]" <98922864+opensearch-trigger-bot[bot]@users.noreply.github.com> Date: Tue, 29 Nov 2022 10:14:43 -0800 Subject: [PATCH] [Backport 1.x] [Legacy Maps Plugin] Prevent reverse-tabnabbing (#2934) * [Legacy Maps Plugin] Prevent reverse-tabnabbing (#2540) Signed-off-by: Miki Signed-off-by: Miki (cherry picked from commit 19a2e4a9156f04cfd87aa6961919129e19b5eac3) Signed-off-by: github-actions[bot] * [Chore] Add changelog Signed-off-by: Josh Romero Signed-off-by: Miki Signed-off-by: github-actions[bot] Signed-off-by: Josh Romero Co-authored-by: github-actions[bot] Co-authored-by: Josh Romero --- CHANGELOG.md | 2 ++ src/plugins/maps_legacy/public/map/map_messages.js | 9 ++++++--- 2 files changed, 8 insertions(+), 3 deletions(-) diff --git a/CHANGELOG.md b/CHANGELOG.md index b27d484990b6..185d61da7d28 100644 --- a/CHANGELOG.md +++ b/CHANGELOG.md @@ -7,7 +7,9 @@ Inspired from [Keep a Changelog](https://keepachangelog.com/en/1.0.0/) ### Deprecations ### 🛡 Security + * [CVE-2022-0144] Bump shelljs from 0.8.4 to 0.8.5 ([#2511](https://github.com/opensearch-project/OpenSearch-Dashboards/pull/2511)) +* [Legacy Maps Plugin] Prevent reverse-tabnabbing ([#2540](https://github.com/opensearch-project/OpenSearch-Dashboards/pull/2540)) * [CVE-2022-0155] Bump follow-redirects to 1.15.2 ([#2653](https://github.com/opensearch-project/OpenSearch-Dashboards/pull/2653)) * [CVE-2022-0536] Bump follow-redirects to 1.15.2 ([#2653](https://github.com/opensearch-project/OpenSearch-Dashboards/pull/2653)) * [CVE-2022-23647] Bump prismjs to 1.29.0 ([#2668](https://github.com/opensearch-project/OpenSearch-Dashboards/pull/2668)) diff --git a/src/plugins/maps_legacy/public/map/map_messages.js b/src/plugins/maps_legacy/public/map/map_messages.js index 7a580681d0af..1c1701812d17 100644 --- a/src/plugins/maps_legacy/public/map/map_messages.js +++ b/src/plugins/maps_legacy/public/map/map_messages.js @@ -34,7 +34,7 @@ import React, { Fragment } from 'react'; import ReactDOM from 'react-dom'; import { FormattedMessage } from '@osd/i18n/react'; -import { EuiSpacer, EuiButtonEmpty, EuiEmptyPrompt } from '@elastic/eui'; +import { EuiSpacer, EuiButtonEmpty, EuiEmptyPrompt, EuiLink } from '@elastic/eui'; import { toMountPoint } from '../../../opensearch_dashboards_react/public'; export const createRegionBlockedWarning = (function () { @@ -114,9 +114,12 @@ export const createZoomWarningMsg = (function () { Please go to { wms } for more information." values={{ wms: ( - + {`Custom WMS Configuration`} - + ), }} />