---
title: "Acquia CMS - September 9, 2022"
date: "2025-09-12T05:57:24+00:00"
summary: "Acquia CMS Headless 1.3.0-beta5: Security updates, Next.js upgrade, enhanced permissions, and bug fixes for seamless headless CMS experience."
image:
type: "announcement"
url: "/drupal-starter-kits/release/2022-09-09/78636-acquia-cms-september-9-2022"
id: "50610afd-aeb3-40c5-a7d7-9d6a9715d453"
---

### [Acquia CMS Headless](https://www.drupal.org/project/acquia_cms_headless) [1.3.0-beta5](https://www.drupal.org/project/acquia_cms_headless/releases/1.3.0-beta5)

*   Change The [Acquia CMS Headless](https://www.drupal.org/project/acquia_cms_headless) module is enhanced to include security updates. If you are already using this module, ensure that you upgrade the module from [1.3.0-beta4](https://www.drupal.org/project/acquia_cms_headless/releases/1.3.0-beta4) to [1.3.0-beta5](https://www.drupal.org/project/acquia_cms_headless/releases/1.3.0-beta5), and run the updated hooks by using the command: `drush updb`.
*   Change The Next.js module has been upgraded to [1.3.0](https://www.drupal.org/project/next/releases/1.3.0).
*   Change The permissions of the _Headless_ user are enhanced to get all roles that exist on the site.
*   Change The `issue subrequests` permission is added to authenticated and anonymous user roles.
*   Change The `hook_update_N()` is added to the [Acquia CMS Headless](https://www.drupal.org/project/acquia_cms_headless) module. This ensures that user roles can be updated for the existing sites.
*   Fix Users could not upgrade the Next.js module to the latest release because of the patch failure.