Shortcodes now render by default in the widget’s Text and After Text areas. Matches WordPress core’s text widget behavior since 4.9.
Added new gee_text_content and gee_after_text_content filters that run after wpautop, mirroring core’s widget_text_content split. Existing gee_text / gee_after_text hooks continue to receive raw user input. Sites that want to disable default shortcode processing can remove_filter( ‘gee_text_content’, ‘do_shortcode’ ) (and the same for gee_after_text_content).
Fixed: inline style attributes are no longer stripped from <input> elements in the Hidden Fields box, and the display, visibility, opacity, and background-image declarations vendor newsletter snippets rely on now survive sanitization. This restores Flodesk-style tracking pixels and similar visually-hidden inputs. Props 17thavenue for the report (issue 164).
Widened the Hidden Fields allowlist to permit common form attributes that vendor newsletter snippets rely on (placeholder, required, autocomplete, pattern, min/max/step, aria-*, data-*, tabindex, role, etc.) while continuing to strip event handlers (on*) and form-overriding attributes (formaction, formmethod).
Restored the pre-2.3.0 form id format (subscribe<widget-id>, no hyphen) after 2.3.0 inadvertently changed it to subscribe-<widget-id>.
2.3.1
Restored subbox, subbox1, subbox2, and subbutton on the form’s input elements (as both id and class) for backward compatibility with sites that style off them. Note: when more than one widget instance is on the same page, the IDs will not be unique, which is technically invalid HTML but preserves long-standing behavior.
2.3.0
Removed defunct FeedBurner integration. Google discontinued email subscriptions in 2021.
Removed obsolete MailPoet 2 (WYSIJA) integration.
Security: tightened output escaping on the form action URL, hidden fields, and widget title.
Accessibility: added role=”alert” to admin-facing configuration notices.
Added an admin notice when the widget is saved without a form action, to help new users spot misconfiguration.
Fixed duplicate hardcoded HTML IDs that could collide when multiple widget instances were placed on a page.
Bumped tested version to WordPress 7.0.
2.2.0
Adds “enews-{$field_count}-field” classes to form to aid in additional styling. See https://github.com/kraftbj/genesis-enews-extended/pull/152
Props to JiveDig for the contribution.
2.1.4
Accessibility: Use aria-label instead of to prevent CSS being either over-agressive or not enough.
2.1.2
Accessibility: Updates to be implicit to eliminate duplication when multiple instances are used on a page.
Coding Standards: Implement WPCS.
2.1.1
Remove comment that was displaying on the front end.
2.1.0
Provide option to link to the site’s Privacy Policy.
Allow “a” HTML tags in the hidden fields settings field.
Various improvements to match coding standards.
2.0.2
Fixes minor issue that led to HTML validation issues.
Fixes PHP notice for checking non-existent variables in some cases.
2.0.1
Corrects typo impacting Last Name field text placeholder.
2.0.0
Add filters for text before and after form.
Fixed form name to be valid HTML 4.
Use https with Feedburner to prevent mixed content warnings on HTTPS sites.
Minor code fix when MailPoet is not present.
Adds genesis-enews-extended-args filter to allow plugins to manipulate the widget settings prior to output.
Uses HTML 5 placeholders instead of JavaScript.
Form ID now uses a unique value.
1.4.1
Add fieldset, legend, option, optgroup, select to allowed HTML for Hidden Fields area.
