Hi @David Yu ,
I've moved your question into its own topic to reduce confusion for folks looking at other questions.
Removing the plugin entirely is a strategy that would mitigate the vulnerability, only if you are on a version of Jira Service Management prior to 4.15.0 when the app became bundled with JSM. Do note we are talking about using the Uninstall action in the plugin manager rather than the Disable action. However, versions of Jira Service Management in which you can uninstall Insight also can be mitigated by upgrading to version 8.9.3 of the Insight app.
Can you confirm which version of Jira Service Management you are running?
Daniel Eads | Atlassian Support
Hello everyone! We are very excited to announce some much needed changes to the issue create experience in JSM (the blue "create" button) at the top of the screen. We have just starte...
Connect with like-minded Atlassian users at free events near you!Find an event
Connect with like-minded Atlassian users at free events near you!
Unfortunately there are no Community Events near you at the moment.Host an event
You're one step closer to meeting fellow Atlassian users at your local event. Learn more about Community Events