v6.6.2

Changelog

v6.6.2

Release Date: 29th October 2025

• feat(filters): add convert_field_name_to_lowercase JS filter for uppercase ACF field names
• feat(blocks): add hideFieldsInSidebar option to hide V3 Block forms from sidebar
• feat(blocks): add "Open Expanded Editor" button in sidebar for V3 Blocks
• fix(metaboxes): prevent reorder buttons from being hidden in block editor sidebar
• fix(blocks): display fallback message when V3 Block preview fails due to invalid HTML
• fix(blocks): remove loading spinner from preloaded V3 Blocks
• fix(blocks): save default field values in V3 Blocks without user interaction
• fix(blocks): prevent field disappearance on CMD/CTRL + Z in V3 Blocks
• fix(blocks): open V3 Block form on left side for RTL languages

v6.5.1

• Enhancement - The Flexible Content “Expand All” and “Collapse All” button now appear correctly on mobile
• Enhancement - The Flexible Content delete layout button is now back in the main layout header, making it easier to delete layouts
• Enhancement - The JSON import tool now limits the selectable files to JSON files
• Fix - Disabled Flexible Content layouts are no longer counted towards min/max layout validation
• Fix - The top “Add Row” button for layouts is now disabled when layouts have reached the max layouts validation
• Fix - The per-layout “Add Row” and “Duplicate Layout” buttons are now disabled when layouts have reached the max layouts validation
• Fix - Disabling Flexible Content layouts no longer disables layouts in cloned Flexible Content fields using a different post ID on the same page
• Fix - Flexible Content “Add Layout” menu is no longer hidden by some field types
• Fix - Flexible Content layout names can now allow some safe HTML
• Fix - When creating a temporary post type during import, ACF now correctly sets the ACF post type, rather than defaulting to post
• Fix - ACF PRO updates are now shown even when no other plugins have an update available

v6.4.3

• Security - Unsafe HTML in field group labels is now correctly escaped for conditionally loaded field groups, resolving a JS execution vulnerability in the classic editor
• Security - HTML is now escaped from field group labels when output in the ACF admin
• Security - Bidirectional and Conditional Logic Select2 elements no longer render HTML in field labels or post titles
• Security - The acf.escHtml function now uses the third party DOMPurify library to ensure all unsafe HTML is removed. A new esc_html_dompurify_config JS filter can be used to modify the default behaviour
• Security - Post titles are now correctly escaped whenever they are output by ACF code. Thanks to Shogo Kumamaru of LAC Co., Ltd. for the responsible disclosure
• Security - An admin notice is now displayed when version 3 of the Select2 library is used, as it has now been deprecated in favor of version 4

v6.4.2

• New - In ACF PRO, fields can now be added to WooCommerce Subscriptions when using HPOS
• Security - Changing a field type no longer enables the "Allow Access to Value in Editor UI" setting
• Fix - Paginated Repeater fields no longer save duplicate values when saving to a WooCommerce Order with HPOS disabled
• Fix - Blocks registered via acf_register_block_type() with a parent value of null no longer fail to register

Full Changelog: v6.4.0.1...v6.4.2

v.6.4.0.1-patched

v.6.4.0.1-patched

• Fixed: PHP TypeError /includes/class-acf-data.php (thanks to @nikola-wd)

Full Changelog: v6.4.0.1...v6.4.0.1-patched

v6.4.0.1

6.4.0.1

Release Date: April 8th, 2025

• Fix: Calling acf_get_reference() with an invalid field name no longer causes a fatal error

Full Changelog: v6.3.11...v6.4.0.1

v6.3.10

• Fixed bug found by @nikola-wd

Full Changelog: v3.6.10...v6.3.10

v6.3.4

v6.3.4

v6.3.0.1

v6.3.0.1

v6.2.9

Full Changelog: v6.2.7...v6.2.9