WooCommerce 3.9.2 is now available. This minor release includes two security fixes. Additionally — by popular demand! — it restores the default behavior of the “Shipping destination” option.
Since this release contains fixes to improve security, we encourage you to update your sites as soon as possible.
Here’s the full list of fixes:
* Security - Show a notice when a logged-in customer pays for a guest order. * Security - Disallow links in coupon error messages. * Fix - Restored the default behavior of the "Shipping destination" option. #25571
Download the latest release of WooCommerce here or visit Dashboard → Updates to update the plugin from your WordPress admin screen.
As usual, if you spot any other issues in WooCommerce core, please log them in detail on GitHub. Discover security issue? Please submit a report via HackerOne.