Drupal has identified the security release of Drupal 7 made available earlier today as upgraded from critical to highly critical, and with known exploits. Due to the severity of these issues Apigee deems it necessary to change our original plan to ensure the security of our customers’ sites. We will begin to run automated updates within the hour.
All sites will have non-production environments (Dev, Test & Multi-dev) updated to the latest version, including a recent update to a Drupal module just recently made available. In order to minimize impact to production environments a fix-specific, patch-only, release will be applied. It will be important to validate your site on your Test environment and fully deploy to Production so that your site is completely on the latest version of Drupal core.
If your site experiences any issues please contact Apigee Support for immediate assistance.
More information from Drupal is available on their PSA at: https://www.drupal.org/sa-core-2018-004