Joomla 1.5.18 released [Wojmamni ama wojnaiki] - security release

In the security release, the XSS vulnerability of the administrative part of the system was eliminated (the user of the back-end level could execute JavaScript, some sections of the administrative panel)
Vulnerability was found on May 13 and eliminated on May 28.
Developers recommend updating their sites built on Joomla 1.5.17 and all previous 1.5 releases.
Before updating it is necessary to make a backup copy of the files, including the default templates if you have changed them.
Joomla 1.5.18 (Full package)
Service packs for all versions of Joomla 1.5
UPD: on the Russian support forum Joomla! CMS has a theme. Should I update Joomla to version 1.5.18? - apparently in the light of an unsuccessful update to version 1.5.16 and almost instant output 1.5.17
The site joomlaportal.ru reports that in version 1.5.18 they removed the function of automatically disabling plug-ins in the event of errors in them. And that the localized build of Joomla 1.5.18 will be posted soon.