WordPress announced tonight that an unknown hacker inserted a security exploit into 2.1.1. The attack occurred over the past couple of days, but to ensure absolute security the WordPress team has deemed WordPress 2.1.1 dangerous. To combat the hole, WordPress 2.1.2 has been released. If you run any WordPress 2.1.1 blogs, be sure to upgrade before your site is compromised.