Should a security advisory for Markitdown 0.1.3 be released?

[luigigubello]

Hello Microsoft Team 👋

Markitdown 0.1.3 is vulnerable to arbitrary code execution due to CVE-2025-64512. The issue has been patched in release 0.1.4, where the package pdfminer.six has been updated, as written in the changelog (I can confirm the patch). However, this seems to be a minor feature release rather than an important security update. Should the maintainers release a security advisory for Markitdown 0.1.3?