Joomla 2.5.7 has been released.
Notable items in this build include 2 security patches for cross-site scripting attacks as well as a new feature allowing languages to be installed directly from the Joomla backend interface without having to download a language pack first.
42 items from the bug tracker were also addressed.
Full details can be found in the official 2.5.7 release announcement at joomla.org
Since this release improves security, we recommend that all users perform an Joomla upgrade immediately.
A Joomla upgrade can be performed directly in the Joomla administrative backend. For users with multiple sites, we recommend updating all your sites from Watchful.li — a centralized site manager for Joomla.