Update gateway.mdx

Author: JoanCamosTyk

developer-support/release-notes/gateway.mdx

@@ -1611,7 +1611,6 @@ Resolved inconsistent query parameter handling in URL rewrites using Tyk interna
 - Behavior now matches standard HTTP URL rewrites for consistency
 
 Original request query parameters are no longer automatically forwarded through internal loops. Update your URL rewrite configurations to explicitly include any required parameters in the `rewrite_to` URL.
-
 </Accordion>
 
 <Accordion title='Fixed Client mTLS Authentication Between Tyk Gateways'>
@@ -1651,13 +1650,10 @@ Tyk Gateway now properly reads and applies OpenTelemetry configuration from the
 Fixed an issue where the Gateway would fail to load APIs and policies if the Dashboard database was temporarily unavailable during startup. The Gateway will now automatically retry loading configurations with exponential backoff until successful, restoring self-healing capabilities without requiring a manual restart.
 </Accordion>
 
-
 <Accordion title='Fixed error response format for SOAP+XML requests'>
 Resolved an issue where requests with the `application/soap+xml` Content-Type received JSON-formatted error responses instead of the expected XML format. The Gateway now correctly returns XML-formatted errors for SOAP requests.
 </Accordion>
 
-
-
 </AccordionGroup>
 
 ##### Security Fixes
@@ -1669,6 +1665,10 @@ Addressed CVEs reported in dependent libraries, providing increased protection a
 vulnerabilities, including, but not limited to:
 
 - <a href="https://cvereports.com/reports/GHSA-6G7G-W4F8-9C9X" target="_blank">GHSA-6g7g-w4f8-9c9x</a>
+- <a href="https://nvd.nist.gov/vuln/detail/CVE-2026-33186" target="_blank">CVE-2026-33186</a>
+- <a href="https://nvd.nist.gov/vuln/detail/CVE-2025-15558" target="_blank">CVE-2025-15558</a>
+- <a href="https://nvd.nist.gov/vuln/detail/CVE-2026-39883" target="_blank">CVE-2026-39883</a>
+- <a href="https://nvd.nist.gov/vuln/detail/CVE-2026-39882" target="_blank">CVE-2026-39882</a>
 
 </Accordion>