From b8a5f4a97f78d60293f57aa12765a0f0007247d4 Mon Sep 17 00:00:00 2001
From: Cameron Dutro <camertron@gmail.com>
Date: Wed, 2 Mar 2022 13:21:21 -0800
Subject: [PATCH] release 2.49.1

---
 docs/CHANGELOG.md             | 12 ++++++++++++
 lib/view_component/version.rb |  2 +-
 2 files changed, 13 insertions(+), 1 deletion(-)

diff --git a/docs/CHANGELOG.md b/docs/CHANGELOG.md
index 567c1a3db..073ec9ea4 100644
--- a/docs/CHANGELOG.md
+++ b/docs/CHANGELOG.md
@@ -7,6 +7,12 @@ title: Changelog
 
 ## main
 
+## 2.49.1
+
+* Patch XSS vulnerability in `Translatable` module caused by improperly escaped interpolation arguments.
+
+    *Cameron Dutro*
+
 ## 2.49.0
 
 * Fix path handling for evaluated view components that broke in Ruby 3.1.
@@ -657,6 +663,12 @@ _Note: This release includes an underlying change to Slots that may affect incor
 
     *Joel Hawksley*
 
+## 2.29.1
+
+* Patch XSS vulnerability in `ViewComponent::Translatable` module caused by improperly escaped interpolation arguments.
+
+    *Cameron Dutro*
+
 ## 2.29.0
 
 * Allow Slot lambdas to share data from the parent component and allow chaining on the returned component.
diff --git a/lib/view_component/version.rb b/lib/view_component/version.rb
index 18712a36f..e657b9ff1 100644
--- a/lib/view_component/version.rb
+++ b/lib/view_component/version.rb
@@ -4,7 +4,7 @@ module ViewComponent
   module VERSION
     MAJOR = 2
     MINOR = 49
-    PATCH = 0
+    PATCH = 1
 
     STRING = [MAJOR, MINOR, PATCH].join(".")
   end