Eliminates XSS vulnerability on menu settings page. This vulnerability is mitigated by the fact that an attacker (and a victim) must have a role with the "administer site configuration" permission to view this page.
Changes include:
- #973660: pass table alias to db_rewrite_sql() so ON clause does not generate SQL error
- #966168: use h2 for current criteria block title above content
- make the search results above content into an official block (which may be themed as desired)
Includes:
#966168: do not set current criteria block title as page title above content
#714858: support i18n internationalization
#408544: search engine optimization -- implement new settings for term display order in the current search results blocks and the URL
Features and bug fixes included in 6.x-1.3 release:
- #697678 by Nick Fedchik: Commit code intended to be committed on 2010-01-08 related to default depth parameter.
- #677708 by hefox: Add alter hook for setting the url tokens.
The 6.x-1.2 release is broken as it is missing a function rename (referred to above).
Features and bug fixes included in 6.x-1.2 release:
- Check for filter menus before displaying current criteria block;
- Implement a default depth parameter in filter menu links based on the URL depth parameter;
- Fix typos in form and documentation items.
- #451742: Restrict display to terms matching a specified minimum number of nodes.
- #666952: Limit the number of terms displayed for a given vocabulary.
- #216150, #643698, #671552: partial solution to performance issue from many table joins.
The first 6.x release of the module. The new version is much more modular and extensible than the 5.x version. Also, all of the functionality of the 5.x version is now provided by the core and add-on modules.