Joomla! 3.8.10 was announced 26 June as a bugfix update for the security update 3.8.9. This is an update for all previous Joomla! editions.
Due to the total number of security updates in 3.8.8 and 3.8.9, we therefore consider 3.8.7 and 3.8.6 to be insecure.
If you're using Joomla! 3.8.7 or older versions, you must upgrade to 3.8.10 as soon as possible.
If you're using Joomla! 3.8.8, we urge you to update to 3.8.10 to avoid the XSS issues.
- joomla.org - 3.8.10 bugfix release announcement
- joomla.org - 3.8.9 security release announcement
- joomla.org - 3.8.8 security release announcement