Custom e-mail alert does not respect site security

When processing a custom e-mail alert, a user may receive an e-mail even though the transaction used to trigger that e-mail does not match the site on their specific system roles. 
We are currently evaluating this issue and will update this article when we have more information.

Environment

 3.0.516, patch 37

Was this article helpful?