WordPress 3.6.1 is now available. This release comes right after WordPress 3.6 was made available in August 25. This release is a maintenance release with a few minor security bug fixes. This maintenance release fixes 13 known bugs and addresses the three issues fixed by the WordPress security team.
1. Block unsafe PHP serialization that occur in limited situations and setups that can result in remote code execution.
2. Prevent a user with an Author role to use specially crafted request to be able to create a post written by another user.
3. Fix insufficient input validation that can result to redirecting or leading to another website.
Read the rest of the informatio in WordPress Codex.