Upgrade to the latest patchlevel of the 7.19 LTS release. Most notably it contains fixes for the following security bulletins from Atlassian: * https://confluence.atlassian.com/security/security-bulletin-august-15-2023-1276870882.html (upgrade of bundled Apache Tomcat to fix CVE-2023-24998). * https://confluence.atlassian.com/security/security-bulletin-july-18-2023-1251417643.html (fixes CVE-2023-22508, an RCE in Confluence >=6.1 <8.2) Additionally, each release contains several additional bugfixes and security fixes: * https://confluence.atlassian.com/doc/issues-resolved-in-7-19-12-1272383421.html * https://confluence.atlassian.com/doc/issues-resolved-in-7-19-11-1255451908.html * https://confluence.atlassian.com/doc/issues-resolved-in-7-19-10-1252328199.html * https://confluence.atlassian.com/doc/issues-resolved-in-7-19-9-1236440851.html (also fixes CVE-2023-22504 which allows users with read-only access to a page to upload attachments) * https://confluence.atlassian.com/doc/issues-resolved-in-7-19-8-1229036579.html * https://confluence.atlassian.com/doc/issues-resolved-in-7-19-7-1224638578.html (also fixes CVE-2023-22503 an information disclosure of label & attachment names) * https://confluence.atlassian.com/doc/issues-resolved-in-7-19-6-1207191110.html
