SpecterOps · StephenHinck · Apr 4, 2025 · Apr 4, 2025 · Apr 4, 2025
diff --git a/docs/resources/release-notes/summary.mdx b/docs/resources/release-notes/summary.mdx
@@ -7,12 +7,13 @@ mode: wide
 |     |     |     |     |
 | --- | --- | --- | --- |
 | **Release** | **BloodHound** | **SharpHound** | **AzureHound** |
+| 2025-04-04 Release Notes (v7.2.2) | Bug Fixes<br/><br/>* Reverted a fix to string coalesce operations for Cypher on PostgreSQL graph backend databases which caused unintended performance issues.<br/>* NTLM Relay edges will now be properly recreated during post-processing. | _No new release._ | _No new release._ |
 | [2025-04-03 Release Notes (v7.2.1)](/resources/release-notes/v7-2-1) | New and Improved Features<br/><br/>* Added the "Composition" accordion to CoerceandRelayNTLMtoSMB edges to aid defenders in remediation.<br/>* Renamed "Relay Targets" to "Coercion Targets" edge accordion on CoerceandRelayNTLMtoSMB to more accurately describe the contained objects.<br/><br/>Bug Fixes<br/><br/>* Resolved an issue where "Composition," "Relay Targets," or "Coercion Targets" accordions would fail immediately in very large environments.<br/>* Note: CoerceandRelayNTLMtoLDAP and CoerceandRelayNTLMtoLDAPs post-processing was fixed in v7.2.0, apologies for the missed release note.<br/>* Performance improvements on `shortestpath` and `allshortestpathqueries` in Cypher on PostgreSQL graph database backends.<br/>* Fixed a bug when converting an EnterpriseCA node with an HTTP Enrollment Endpoint. | **SharpHound (v2.6.1)**<br/><br/>New and Improved Features<br/><br/>* Added support for properly filtering NTLM relay edges for members of the Protected Users group.<br/><br/>Bug Fixes<br/><br/>* SMB Signing requirements will now be reported correctly | _No new release._ |
 | [2025-03-25 Release Notes (v7.2.0)](/resources/release-notes/v7-2-0) | New and Improved Features<br/><br/>* _\[CE Only\]_ Deep-linking Early Access! (Coming to BHE next release)<br/>* Added early access support for an additional NTLM relay Attack Path primitive, ADCS.<br/>* New BloodHound documentation portal.<br/>* Performance improvements for Pathfinding and Cypher searches with PostgreSQL backend graph databases.<br/>* Added support for ACEs on EnterpriseCA objects.<br/>* Updated finding and entity panel texts for NTLM relay paths.<br/><br/>Bug Fixes<br/><br/>* Administrators may no longer delete themselves. | _No new release._ | _No new release._ |
 | 2025-03-17 (v7.1.1) | _No new release._ | **SharpHound (v2.6.1)**<br/><br/>Bug Fixes<br/><br/>* Resolved an issue causing SharpHound to hang during the collection of SMB relay information | _No new release._ |
 | 2024-11-20 (v6.2.2) | Bug Fixes<br/><br/>* Fixed an excessive resource utilization issue during post-processing.<br/>* After migrating a user to login via SSO, their old password will be invalidated immediately. | _No new release._ | _No new release._ |
 | 2024-11-15  (v6.2.1) | Bug Fixes<br/><br/>* Reverted the Azure post-processing changes due to excessive resource utilization. | _No new release._ | _No new release._ |
-| [2024-11-14 Release Notes (v6.2.0)](/resources/release-notes/2024-11-14-v6-2-0) | New and Improved Features<br/><br/>* Added multiple pre-saved Cypher queries regarding objects marked "Owned."<br/>* Added the "Map OU structure" pre-saved query, previously available in BloodHound Legacy.<br/>* Updated the "Kerberoastable Users" pre-saved cypher query to properly filter out disabled objects, MSAs, GMSAs, and the KRBTGT object.<br/>* Updated all pre-saved Cypher queries to use consistent quotation marks for easier use in API integrations.<br/>* Clicking the "Login via SSO" button will automatically redirect if only a single SSO provider is configured.<br/>* Updated the permissions for the "Upload only" role to align more accurately with what the name implies. This role will no longer be able to modify asset group membership or trigger analysis runs.<br/>* Renamed the "RemoteInteractiveLoginPrivilege" edge to "RemoveInteractiveLogonRight" to match the Microsoft naming schema.<br/>* Improved performance of EntraID post-processing.<br/><br/>Bug Fixes<br/><br/>* Logins via SAML will now correctly appear in the Audit log.<br/>* Corrected several property type errors in data coming from SharpHound.<br/>* _\[CE Only\]_ Docker Compose health check will now work with a modified Neo4J web port set (Thank you, [@yannis-srl](https://github.com/yannis-srl), for your contribution!).<br/>* _\[BHE Only__\]_ SyncedToEntraUser, SyncedToADUser, ADCSESC9b, and ExtendedByPolicy edges will now reconcile properly. | _No new release._ | _No new release._ |
+| [2024-11-14 Release Notes (v6.2.0)](/resources/release-notes/2024-11-14-v6-2-0) | New and Improved Features<br/><br/>* Added multiple pre-saved Cypher queries regarding objects marked "Owned."<br/>* Added the "Map OU structure" pre-saved query, previously available in BloodHound Legacy.<br/>* Updated the "Kerberoastable Users" pre-saved cypher query to properly filter out disabled objects, MSAs, GMSAs, and the KRBTGT object.<br/>* Updated all pre-saved Cypher queries to use consistent quotation marks for easier use in API integrations.<br/>* Clicking the "Login via SSO" button will automatically redirect if only a single SSO provider is configured.<br/>* Updated the permissions for the "Upload only" role to align more accurately with what the name implies. This role will no longer be able to modify asset group membership or trigger analysis runs.<br/>* Renamed the "RemoteInteractiveLoginPrivilege" edge to "RemoveInteractiveLogonRight" to match the Microsoft naming schema.<br/>* Improved performance of EntraID post-processing.<br/><br/>Bug Fixes<br/><br/>* Logins via SAML will now correctly appear in the Audit log.<br/>* Corrected several property type errors in data coming from SharpHound.<br/>* _\[CE Only\]_ Docker Compose health check will now work with a modified Neo4J web port set (Thank you, [@yannis-srl](https://github.com/yannis-srl), for your contribution!).<br/>* _\[BHE Only\]_ SyncedToEntraUser, SyncedToADUser, ADCSESC9b, and ExtendedByPolicy edges will now reconcile properly. | _No new release._ | _No new release._ |
 | [2024-10-22 Release Notes (v6.1.0)](/resources/release-notes/2024-10-22-v6-1-0) | _No new features or fixes._ | **SharpHound v2.5.11 - BHE, v2.5.8 - CE**<br/><br/>New and Improved Features<br/><br/>* Migrated ACL hashing functionality to utilize SHA1 to support environments that enforce FIPS-compliant algorithms.<br/><br/>Bug Fixes<br/><br/>* Fixed collection of LAPS edges in both legacy and modern systems. | _No new release.  <br/>_ |
 | [2024-09-30 Release Notes (v6.0.0)](/resources/release-notes/2024-09-30-v6-0-0) | New and Improved Features<br/><br/>* Dark mode is now generally available!<br/>* Introducing optional support for Citrix Direct Access Users group in CanRDP logic!<br/>* _\[BHE Only\]_ Reconciliation timelines are now configurable!<br/>* Improved logic for identifying and creating complex edges requiring multiple permissions (including ADCS ESC, DCSync, etc.) when Authenticated Users@ or Everyone@ groups are involved.<br/>* Improved accuracy on ADCS ESC9 and ESC10 processing logic<br/>* CanRDP edges will now appropriately appear from Computer objects with permission to RDP to another computer.<br/>* Provided additional abuse information to ADCSESC9b, ADCSESC10b, GenericAll, GenericWrite, Contains, Owns, WriteDacl, AllExtendedWrites, and WriteOwner Attack Path primitives.<br/>* Support for .zip file uploads that include UTFBOM markings within contained JSON files has been added.<br/><br/>Bug Fixes<br/><br/>* Resolved an intermittent issue with the parallelization of ADCS post-processing.<br/>* Applying multiple filter predicates to an API query will no longer throw an error.<br/>* Admin Audit log API endpoints now correctly support the "skip" query parameter.<br/>* The Cypher query window will no longer extend beyond the end of the browser.<br/>* _\[BHE Only\]_ Resolved some duplicate collection issues related to highly available deployments. | **SharpHound (v2.5.10 - BHE)**<br/><br/>Bug Fixes<br/><br/>* _\[BHE Only\]_ Resolved several installation issues for specific scenarios. | _No new release._ |
 | 2024-09-19 (v5.15.1) | _No changes._ | **SharpHound (v2.5.9 - BHE, v2.5.7 - CE)**<br/><br/>Bug Fixes<br/><br/>* Resolved an issue with enumerating domain objects where password rotation is not enforced.<br/>* Improved collection performance related to the collection of ACEs with unresolvable SIDs. | _No new release._ |