WordPress 5.7.2 was released yesterday. This is a security patch affecting all versions of WordPress going back to 3.7. It is recommended that you update your sites as soon as you can. As a security update, this should happen automatically unless you have automatic updates disabled. You can also update manually.
More information can be found on the WordPress blog: WordPress 5.7.2
Wordfence also has a blog post on the vulnerability. WordPress 5.7.2 Security Release: What You Need to Know