WordPress 5.1.1 is out as a security and maintenance release. 🔒
The vulnerability fixed in the 5.1.1 is detailed by Simon Scannell of RipsTech, who discovered it.
5.1.1 also includes a new button that hosts can enable to encourage site owners to upgrade PHP to new versions, presumably in preparation for the minimum PHP version bump coming in WordPress 5.2.
