WordPress 4.2.3 was released today. It includes a number of security fixes, including a critical cross-site scripting vulnerability, and therefore all users are advised to update as soon as possible.
Full details: WordPress 4.2.3 Security and Maintenance Release