diff --git a/.hgtags b/.hgtags
--- a/.hgtags
+++ b/.hgtags
@@ -34,3 +34,4 @@ 3982abcfdcc229a723cebe52d3a9bcff10bba08e
 33195f145db9172f0a8f1487e09207178a6ab065 v4.11.3
 194c74f33e32bbae6fc4d71ec5a999cff3c13605 v4.11.4
 8fbd8b0c3ddc2fa4ac9e4ca16942a03eb593df2d v4.11.5
+f0609aa5d5d05a1ca2f97c3995542236131c9d8a v4.11.6
diff --git a/.release.cfg b/.release.cfg
--- a/.release.cfg
+++ b/.release.cfg
@@ -19,15 +19,14 @@ done = true
 [task:generate_api_docs]
 done = true
 
-[task:generate_js_routes]
-done = true
-
 [release]
 state = prepared
-version = 4.1.1
+version = 4.11.6
 
 [task:updated_translation]
 
+[task:generate_js_routes]
+
 [task:updated_trial_license]
 
 [task:generate_oss_licenses]
diff --git a/docs/release-notes/release-notes-4.11.6.rst b/docs/release-notes/release-notes-4.11.6.rst
new file mode 100644
--- /dev/null
+++ b/docs/release-notes/release-notes-4.11.6.rst
@@ -0,0 +1,41 @@
+|RCE| 4.11.6 |RNS|
+------------------
+
+Release Date
+^^^^^^^^^^^^
+
+- 2018-03-28
+
+
+New Features
+^^^^^^^^^^^^
+
+
+
+General
+^^^^^^^
+
+
+
+Security
+^^^^^^^^
+
+- api(high): fixed unauthorized access to repositories using forged api requests.
+
+
+Performance
+^^^^^^^^^^^
+
+
+
+Fixes
+^^^^^
+
+
+
+Upgrade notes
+^^^^^^^^^^^^^
+
+- Unscheduled security release addressing found vulnerability in the API that
+  allows attackers to gain access to repositories in unauthorized way by forging
+  data in the API request.
diff --git a/docs/release-notes/release-notes.rst b/docs/release-notes/release-notes.rst
--- a/docs/release-notes/release-notes.rst
+++ b/docs/release-notes/release-notes.rst
@@ -9,6 +9,7 @@ Release Notes
 .. toctree::
    :maxdepth: 1
 
+   release-notes-4.11.6.rst
    release-notes-4.11.5.rst
    release-notes-4.11.4.rst
    release-notes-4.11.3.rst