We've just built Darga-4.1 This release contains a security fix, bug fixes, numerous UI tweaks, and stabilization.
Security Fix(es): (CVE-2016-7040) In ManageIQ product there was found an improper input validation vulnerability in expression engine allowing to trigger code execution. The issue was found to be exploitable both via JSON API, which can be triggered by users authorized with GET/read access to a collection in API, and via UI when filtering on VMs based on regular expression, which can be triggered by users able to view and filter on VMs in UI. This issue was discovered by Adam Mariš (Red Hat).
Here is the changelog: Darga-4.1
The GA announcement shows the summary of changes since Capablanca.
This is a companion discussion topic for the original entry at http://manageiq.org/blog/2016/10/Announcing-Darga-4.1/