This patch release addresses a single vulnerability:
- The client now depends on version 2.6.3 of the underlying
urllib3module. This addresses CVE https://nvd.nist.gov/vuln/detail/CVE-2026-21441 . Please note that this vulnerability applies when receiving a redirect from an untrusted source. As MarkLogic can be considered a trusted source, the vulnerability does not apply in normal usage of the MarkLogic Python Client with MarkLogic.