After the Windows 10 21H2 Build 19044.1618 (KB5011543) update was released to Release Preview channel users last week, the update is publicly available today as an optional update to all Windows 10 users, including enterprise users.
The update includes the same features that were released in preview last week, but with version, numbers bumped to 19044.1620 (21H2), 19043.1620 (21H1), and 19042.1620 (20H2) for Windows 10 users after installation.
This cumulative update mainly adds the Search Highlights function to the Windows 10 system. This feature will allow the taskbar search box and search homepage to be updated regularly, allowing you to “discover more, stay connected, and stay productive.”
The main updates of Windows 10 Build 19044.1620 are as follows:
- New: Microsoft provides the ability to change the color of the toast button for applications that use Windows Notifications to send notifications in the operating system to make it easier to identify success and critical scenarios. This feature also makes notifications more visually compact.
- New content: Microsoft has added a new policy. For apps that use Windows Notifications to send notifications in the operating system, the first three notifications of the app will be expanded by default in the Action Center. This feature displays multiple notifications that you can interact with at the same time.
- Fixed an issue that caused searchindexer.exe to stop responding during uninstall operations in a remote desktop setup environment.
- Fixed an issue affecting searchindexer.exe that prevented Microsoft Outlook’s offline search from returning recent mail.
- Fixed an issue that could disable Windows when you changed the National Language Support (NLS) version from 6.3 to 6.2.
- Fixed an issue where modern browsers would not render HTML generated by gpresult/h correctly.
- Fixed an issue where an “Access Denied” exception would be generated for a file when PowerShell tests AppLocker.
- Fixed an issue that could cause the Group Policy service to stop processing telemetry information for Group Policy registry preferences.
- Fixed an issue that could prevent DNS server query resolution policies from working as expected when you specified a fully qualified domain name (FQDN) and subnet criteria.
- Fixed a heap leak in PacRequestorEnforcement that was slowing down domain controller performance.
- Fixed an issue affecting the Key Distribution Center (KDC) agent. The KDC agent cannot properly obtain a Kerberos ticket to sign the Key Trust Windows Hello for Business.
- Added support for Microsoft Account (MSA) Pass-through scenarios in Azure Active Directory (AAD) Web Account Manager (WAM).
- Fixed an issue where Event ID 37 was logged in certain password change scenarios, including failover Cluster Name Object (CNO) or Virtual Computer Object (VCO) password changes.
- Fixed an issue that could inadvertently add a Trusted Platform Module (TPM) protector when you use the silent BitLocker enable the policy.
- Fixed an issue that prevented the User Account Control (UAC) dialog from correctly displaying applications requesting elevated privileges.
- Fixed an issue that would cause the Move-ADObject command to fail when you moved computer accounts across domains. The error message is: “Multiple values were specified for a property that can only have one value”.
- Fixed an issue that prevented event 4739 from showing new values for certain properties after a policy change.
- Fixed an issue that prevented Android device users from logging into certain Microsoft applications, such as Microsoft Outlook or Microsoft Teams. This issue occurs after rolling the token signing and decrypting the certificate, resetting the user’s password, or revoking the refresh token by the administrator.
- Fixed an issue that could cause domain joins to fail in environments using irrelevant DNS hostnames.
- Fixed an issue where the back button of your logged-in credentials window would not display in high-contrast black mode.
- Fixed an issue where you could not access the Server Information Block (SMB) share using an IP address when SMB hardening was enabled.
- Fixed an issue that occurred when SMB’s Best Practices Analyzer (BPA) value was not updated for newer platforms.
- Fixed an issue that caused stop error 0x1E in the SMB server (srv2.sys).
- Fixed an issue that caused the NetBIOS and DNS Active Directory domain names do not to match when you created a cluster.
- Fixed an issue that would cause the Network File System (NFS) redirector to stop working (error 0x50) when you were converting a text file to PDF.