From 27485b9f7c5b634aeb65a0e525fd8e2969f8e67e Mon Sep 17 00:00:00 2001
From: Gabriela Georgieva <gabriela.georgieva@docker.com>
Date: Wed, 12 Apr 2023 13:23:22 +0200
Subject: [PATCH] Link CVE ID CVE-2023-1802 in the Security section of the 4.18
 release notes (#17049)

---
 desktop/release-notes.md | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/desktop/release-notes.md b/desktop/release-notes.md
index b8291bae69..aaeecb716e 100644
--- a/desktop/release-notes.md
+++ b/desktop/release-notes.md
@@ -80,7 +80,7 @@ For frequently asked questions about Docker Desktop releases, see [FAQs](faqs/ge
 
 #### For all platforms
 
-- Fixed a security issue with the Artifactory Integration where it would fall back to sending registry credentials over plain HTTP if HTTPS check failed. Only users who have `Access experimental features` enabled are affected. Fixes [docker/for-win#13344](https://github.com/docker/for-win/issues/13344).
+- Fixed [CVE-2023-1802](https://www.cve.org/cverecord?id=CVE-2023-1802){: target="_blank" rel="noopener" class="_"} where a security issue with the Artifactory Integration would cause it to fall back to sending registry credentials over plain HTTP if HTTPS check failed. Only users who have `Access experimental features` enabled are affected. Fixes [docker/for-win#13344](https://github.com/docker/for-win/issues/13344).
 
 #### For Mac