Also see Breaking changes in 5.0.
An Open Redirect vulnerability has been fixed with the short URL feature.
Previously, a malicious user could use the internal API that powers the short
URL feature to create a short URL in kibana that redirected to a different
Improved error message when sessionStorage is disabled in the browser #8343
Trailing slash redirects now include the basepath configuration #8966
Share UI now properly honors the dark theme #8819
Tile map bounding boxes no longer create filters with invalid bounds #8946