• Re-fixed an issue where certain URL constructs could allow arbitrary code execution, as reported by Andrey Stroganov; see our advisory
• Fixed an issue where certain characters in HTML could incorrectly be ignored, which could facilitate XSS attacks; see our advisory
• Fixed another issue where small windows could be used to trick users into executing downloads as reported by Jordi Chancel; see our advisory
• Fixed an issue where an element's HTML content could be incorrectly returned without escaping, bypassing some HTML sanitizers; see our advisory
• Fixed a low severity issue, details will be disclosed at a later date

http://jp.opera.com/download/