TopBraid-Suite 9.0.4 - Changed: DEV-654: The teamwork:usersInfo service now expects either a single user login name or a comma-separated list of user URIs; comma-separated lists of login names are no longer supported. - Bug fix: DEV-654: Fixed user information lookup and notification delivery for users whose login names contain special characters, such as email addresses. - Bug fix: DEV-664: Users who are not administrators or power users can now save the notification channel selection on their own profile. - Security: DEV-689: Addressed CVE-2026-50010 (improper TLS certificate verification in Netty). - Security: DEV-690: Addressed CVE-2026-40988 and CVE-2026-41003 (denial of service and cross-site scripting in Spring Security SAML2 support).