authentik version/2026.5.3 released on 10-06-2026

authentik version/2026.5.3 is out now. It consolidates a large set of documentation backports and clarifications, brings security and dependency updates (including a Django bump to 5.2.15) and delivers a range of provider, endpoint and frontend fixes that improve stability and compatibility.
For full details and the complete changelog, see the official release notes on the project documentation and the comparison on GitHub.
What’s in this release
- Documentation consolidation: cherry‑picked release notes from 2026.5.2, 2026.2.4 and 2025.12.6, added OIDC issuer information, updated endpoint/SSH and proxy provider docs, cleaned proxy provider docs and updated binding wizard labels.
- Security and dependency updates: CVE‑2026‑49443 and CVE‑2026‑49448 are marked in the docs; Django bumped from 5.2.14 to 5.2.15 (cherry‑picked into the 2026.5 branch).
- Provider, endpoint and frontend fixes: SCIM interactive OAuth no longer overwrites refresh_token; providers/oauth skips post‑logout redirect matching when none are saved; Docker Outpost CA cert filter fix; agent connector auth‑type exception fix; RADIUS panic fix; Safari < 17.4 polyfill and improved e2e proxy and blueprint handling.
Upgrade notes
- No breaking API changes are documented in the release notes, but test the Django 5.2.15 dependency bump in a staging environment before upgrading production.
- If you need to revert, you can roll back to the previous version (version/2026.5.2); consult the full changelog on GitHub to review the differences between releases.
Share any comments or issues you see after upgrading on the project’s GitHub pages so maintainers and other users can follow up.


