Update 1.9.1 release info

commit: 75d260f8ecd1130a9fac162170c35c5460a0c5e3 [log] [tgz]
author: Brian Demers <bdemers@apache.org> Tue Jun 28 15:30:28 2022 -0400
committer: Brian Demers <bdemers@apache.org> Tue Jun 28 15:30:28 2022 -0400
tree: c4f9004753d8c288063d78ba72321dd2fda57568
parent: 956140accbfcf3f29d94e085a6ab01ea8e3bc9e8 [diff]
diff --git a/src/site/content/blog/2022/06/28/apache-shiro-191-released.adoc b/src/site/content/blog/2022/06/28/apache-shiro-191-released.adoc
index 2861f5a..2502599 100644
--- a/src/site/content/blog/2022/06/28/apache-shiro-191-released.adoc
+++ b/src/site/content/blog/2022/06/28/apache-shiro-191-released.adoc

@@ -17,7 +17,7 @@
 # under the License.
 ////
 
-= Apache Shiro 1.9.1 Released
+= 1.9.1 available with fix CVE-2022-32532
 Brian Demers
 :jbake-date: 2022-06-28
 :jbake-type: post
@@ -35,6 +35,12 @@
 
 You can learn more on link:https://issues.apache.org/jira/projects/SHIRO/versions/12351487[Jira, Release 1.9.1].
 
+=== CVE-2022-32532
+Apache Shiro before 1.9.1, A RegexRequestMatcher can be misconfigured to be bypassed on some servlet containers. Applications using RegExPatternMatcher with `.` in the regular expression are possibly vulnerable to an authorization bypass.
+
+Credit:
+Apache Shiro would like the thank 4ra1n for reporting this issue.
+
 === Bug
 
 * [https://issues.apache.org/jira/browse/SHIRO-829[SHIRO-829]] -
commit	75d260f8ecd1130a9fac162170c35c5460a0c5e3	[log] [tgz]
author	Brian Demers <bdemers@apache.org>	Tue Jun 28 15:30:28 2022 -0400
committer	Brian Demers <bdemers@apache.org>	Tue Jun 28 15:30:28 2022 -0400
tree	c4f9004753d8c288063d78ba72321dd2fda57568
parent	956140accbfcf3f29d94e085a6ab01ea8e3bc9e8 [diff]