On 7 Sept, 2016, WordPress 4.6.1 was released to the public.
To download WordPress 4.6.1, update automatically from the Dashboard > Updates menu in your site's admin area or visit https://wordpress.org/download/release-archive/.
For step-by-step instructions on installing and updating WordPress:
If you are new to WordPress, we recommend that you begin with the following:
From the WordPress 4.6.1 release post: WordPress versions 4.6 and earlier are affected by two security issues: a cross-site scripting vulnerability via image filename, reported by SumOfPwn researcher Cengiz Han Sahin; and a path traversal vulnerability in the upgrade package uploader, reported by Dominik Schilling from the WordPress security team.
WordPress 4.6.1 also fixes 15 bugs from Version 4.6, including:
wp-admin/about.php wp-admin/js/editor-expand.js wp-admin/js/editor-expand.min.js wp-admin/includes/media.php wp-admin/includes/class-file-upload-upgrader.php wp-admin/includes/class-language-pack-upgrader.php wp-includes/wp-db.php wp-includes/pluggable.php wp-includes/script-loader.php wp-includes/general-template.php wp-includes/css/editor.css wp-includes/css/editor.min.css wp-includes/css/editor-rtl.css wp-includes/css/editor-rtl.min.css wp-includes/functions.php wp-includes/class-wp-editor.php wp-includes/taxonomy.php wp-includes/load.php wp-includes/version.php wp-includes/class-http.php wp-includes/js/tinymce/skins/wordpress/wp-content.css wp-includes/js/jquery/jquery.masonry.min.js wp-includes/Requests/Transport/cURL.php wp-includes/revision.php wp-content/plugins readme.html