[MEDIUM] Magento Improper Access Control

PKSA-rx41-6862-pt82 CVE-2021-21020 GHSA-2j6v-829g-885q

Affected package: magento/community-edition

Affected version: >=2.4.0,<2.4.1-p1|<2.3.6

Reported by:
GitHub