tigergraph · Tushar-TG-14 · Aug 4, 2025 · Aug 11, 2025 · Aug 12, 2025 · victorleeTG
diff --git a/modules/release-notes/pages/index.adoc b/modules/release-notes/pages/index.adoc
@@ -154,10 +154,29 @@ xref:4.2@tigergraph-server:data-loading:load-from-kafka-mm.adoc[] is still avail
 ==== Functionality
 
 * Fixed missing error message when running a non-procedural GSQL query containing syntax errors at the end (GLE-10295).
+* Eliminated false *REST-10015* error message when upserting a single vertex using the `gsql-atomic-level:atomic` flag via REST API (GLE-10680).
+* Fixed a GPE crash caused by removing a cluster node or when a Disaster Recovery cluster has fewer replicas than the primary cluster (CORE-4967).
+* Fixed the MaxFlow algorithm to return correct results, consistent with documented examples (GLE-10737).
+* Fixed a UDF parsing error that failed to detect user-defined function names which conflict with built-in functions (GLE-10326).
+* Fixed an issue where the system would throw a NullPointerException and fail to create or install a query during code validation (GLE-10501).
+* Fixed an issue by skipping authentication when replaying requests in a Disaster Recovery cluster (GLE-10702).
+* Fixed an issue that could cause upgrade failures by performing query and token bank compilation checks during the pre‑upgrade stage (GLE‑9459).
 
 ==== Improvements
 
 * Moved GSQL query and loading job compilation checks to the pre-check phase during upgrade to catch errors earlier and avoid manual fixes after upgrade (TP-7289).
+* Reduced disk usage by removing on-disk indexes in cloud mode and deleting main files in both cloud and on-prem deployments (CORE-4930).
+* Added support for extracting JWT certificates from JWKS by `kid` to handle automatic key rotation by identity providers (GLE-10001).
+* Enhanced security for namespace-scoped TigerGraph Operator installations by separating the necessary cluster roles and namespace roles (TP-7024).
+* Improved upgrade logs with a clearer message: *Installation of new TigerGraph version* (TP-8249).
+* Added support for the `PRINT vt TO_CSV f` syntax to allow printing a vertex set directly to a CSV file (GLE-10523).
+
+==== Security
+
+* Eliminated a security vulnerability that allowed AWS credentials to be read in plain text using the `gadmin config get` command. These values are now masked (TP-8285).
+* Fixed unauthorized exposure of graph name and creator information via the `/auth/simple` and `/internal/info` APIs (GLE-10746).
+* Eliminated the potential exposure of personally identifiable information (PII) in loading job summary files by replacing detailed data with line numbers for invalid entries (TP-8575).
+* Eliminated potential exposure of personally identifiable information (PII) in error messages when a loading job semantic check failed during creation (GLE-11125).
 
 
 === Fixed and Improved in 4.2.0