Resolved - Drupal.org has released Drupal version 8.6.2. This release is classified as a security release for all previous versions of Drupal.[1] Pantheon has made the update available for one-click update in site dashboards. We urge all users to update all environments as soon as possible. Instructions for applying core updates can be found in our Support Center.[2] This release addresses SA-CORE-2018-006[3]; all users are urged to upgrade their sites as soon as possible.

[1] - https://www.drupal.org/project/drupal/releases/8.6.2
[2] - https://pantheon.io/docs/upstream-updates/
[3] - https://www.drupal.org/SA-CORE-2018-006
Oct 19, 11:55 PDT

Resolved - Drupal.org has released Drupal version 7.60. This release is classified as a security release for all previous versions of Drupal.[1] Pantheon has made the update available for one-click update in site dashboards. We urge all users to update all environments as soon as possible. Instructions for applying core updates can be found in our Support Center.[2] This release addresses SA-CORE-2018-006[3]; all users are urged to upgrade their sites as soon as possible.

[1] - https://www.drupal.org/project/drupal/releases/7.60
[2] - https://pantheon.io/docs/upstream-updates/
[3] - https://www.drupal.org/SA-CORE-2018-006
Oct 19, 11:53 PDT

Resolved - This incident has been resolved.
Oct 18, 16:33 PDT