CVE-2021-23437 was reported 7-Sep-2021, a day-0 high-sev:
The package pillow from 0 and before 8.3.2 are vulnerable to Regular Expression Denial of Service (ReDoS) via the getrgb function.
Edge repo has 8.1.x at this time. 3.14 repo has 8.2.0-r0.
To upload designs, you'll need to enable LFS and have an admin enable hashed storage. More information