A stored Cross-site scripting (XSS) flaw was found in the region map visualization in kibana. This flaw allows an attacker who can edit or create a region map visualization to obtain sensitive information or perform destructive actions on behalf of kibana users who view the region map visualization. The highest threat from this vulnerability is to confidentiality, integrity, and system availability.