We’ve published JupyterHub 5.1.0 which has some nice fixes and improvements over 5.0.0.
5.1.0 also fixes a security issue (CVE-2024-41942). An advisory for the vulnerability will be published in 7 days, to give folks a chance to upgrade (that link will not resolve until the advisory is public). Only deployments who have users with the admin:users scope who are not also full admins of the instance are affected.
The security fix has been backported to 4.1.6, and will propagate to distributions such as zero-to-jupyterhub 3.3.8 shortly.
Thanks to everyone who has contributed!