[Security] 8.19.14 release notes (#7164)

natasha-moore-elastic · web-flow · commit c443d46650b6 · 2026-04-06T19:18:54.000-04:00
diff --git a/docs/release-notes.asciidoc b/docs/release-notes.asciidoc
@@ -3,6 +3,7 @@
 
 This section summarizes the changes in each release.
 
+* <<release-notes-8.19.14, {elastic-sec} version 8.19.14>>
 * <<release-notes-8.19.13, {elastic-sec} version 8.19.13>>
 * <<release-notes-8.19.12, {elastic-sec} version 8.19.12>>
 * <<release-notes-8.19.11, {elastic-sec} version 8.19.11>>
diff --git a/docs/release-notes/8.19.asciidoc b/docs/release-notes/8.19.asciidoc
@@ -1,6 +1,17 @@
 [[release-notes-header-8.19.0]]
 == 8.19
 
+[discrete]
+[[release-notes-8.19.14]]
+=== 8.19.14
+
+[discrete]
+[[bug-fixes-8.19.14]]
+==== Fixes
+* Fixes a denial-of-service risk in Timeline bulk export by validating the number of Timeline IDs (up to 1,000), deduplicating IDs, and bounding enrichment work ({kibana-pull}260265[#260265]).
+* Fixes an issue where notes not associated with a saved Timeline could appear on the **Notes** tab while investigating in Timeline, including for draft Timelines ({kibana-pull}259658[#259658]).
+* Fixes missing `user.name` and `group.name` fields in {elastic-defend} events in some LDAP environments.
+
 [discrete]
 [[release-notes-8.19.13]]
 === 8.19.13
