[MEDIUM] Magento vulnerable to stored Cross-Site Scripting (XSS)

PKSA-z14p-xqf4-7sm6 CVE-2025-54266 GHSA-pcrx-r49h-x2w5

Affected package: magento/project-community-edition

Affected version: <=2.0.2

Reported by:
GitHub