Merge branch '8.19' into issue-2791-mitre-attack-8.18.7-8.19.4

benironside · web-flow · commit 00e7e9a20e4f · 2025-09-16T15:31:10.000-04:00
diff --git a/docs/release-notes.asciidoc b/docs/release-notes.asciidoc
@@ -7,6 +7,7 @@ This section summarizes the changes in each release.
 * <<release-notes-8.19.2, {elastic-sec} version 8.19.2>>
 * <<release-notes-8.19.1, {elastic-sec} version 8.19.1>>
 * <<release-notes-8.19.0, {elastic-sec} version 8.19.0>>
+* <<release-notes-8.18.7, {elastic-sec} version 8.18.7>>
 * <<release-notes-8.18.6, {elastic-sec} version 8.18.6>>
 * <<release-notes-8.18.5, {elastic-sec} version 8.18.5>>
 * <<release-notes-8.18.4, {elastic-sec} version 8.18.4>>
diff --git a/docs/release-notes/8.18.asciidoc b/docs/release-notes/8.18.asciidoc
@@ -1,6 +1,19 @@
 [[release-notes-header-8.18.0]]
 == 8.18
 
+[discrete]
+[[release-notes-8.18.7]]
+=== 8.18.7
+
+[discrete]
+[[bug-fixes-8.18.7]]
+==== Fixes
+* Prevents users without appropriate privileges from deleting notes ({kibana-pull}233948[#233948]).
+* Fixes a bug that prevented the **MITRE ATT&CK** section from appearing in the alert details flyout ({kibana-pull}233805[#233805]).
+* Updates {kib} MITRE ATT&CK data to v17.1 ({kibana-pull}231375[#231375]).
+* Fixes a bug where Linux capabilities were included in {elastic-endpoint} network events despite being disabled.
+* Makes the delivery of {elastic-endpoint} command line commands more robust. In rare cases, commands could previously fail due to interprocess communication issues.
+
 [discrete]
 [[release-notes-8.18.6]]
 === 8.18.6
