WordPress 3.1.4 is available now and is a maintenance and security update for all previous versions.
This release fixes an issue that could allow a malicious Editor-level user to gain further access to the site. Thanks K. Gudinavicius of SEC Consult for bringing this to our attention. Version 3.1.4 also incorporates several other security fixes and hardening measures thanks to the work of WordPress developers Alexander Concha and Jon Cave of our security team. Consult the change log for more details.
Download WordPress 3.1.4 or update immediately from the Dashboard → Updates menu in your site’s admin area.