The Optimizer App now has even more capabilities to enhance your Salesforce org’s implementation. Use two new features to schedule automatic runs and view org metric history and access seven new metrics to improve security.

Where: This change applies to Lightning Experience in Professional, Enterprise, Performance, Unlimited, and Developer editions.

Who: Users must have the Customize Application, Modify All Data, and Manage Users user permissions to access the Optimizer App.

Why:

We added two new features:

• Schedule Run: Save yourself time by setting the Optimizer App to automatically run once a month, behind the scenes.
• Org Metric History: Get a high-level overview of how actions have affected the limits on your org’s file storage, static resources, and data storage.

We also added seven new metrics to help evaluate and give expert recommendations on the security of your org. Ensure that your Salesforce org’s data is secure by following security configuration best practices.

• Profile Assignments
• Critical Permission Assignments
• Release Updates Pending Review
• Insecure Community Sharing Settings
• Insecure Default External Access Levels
• Sharing Rules for All External Users
• Public Groups and Queues with Guest Users

How: From Setup, in the Quick Find box, enter Optimizer, then select Optimizer.

https://help.salesforce.com/s/articleView?id=release-notes.rn_general_optimizer_new_features.htm&release=228&type=5

Salesforce periodically releases updates that improve the performance, logic, security, and usability of Salesforce, but which can affect your existing customizations. Find these important updates in the Release Updates node in Setup.

The Release Updates page provides a list of updates that affect your org. Each update includes step-by-step actions for you to take. To ensure a smooth transition, many release updates have test runs available. Use the test run option to enable and disable an update as often as needed before the “Complete Steps By” date so that you can evaluate its impact on your org.

https://help.salesforce.com/s/articleView?id=release-notes.rn_ru.htm&release=228&type=5

When you look for security alerts that affect your Salesforce org, find them in the Release Updates node. Previously, security alerts resided in a separate location.

Where: This change applies to Lightning Experience and Salesforce Classic in all editions, except Database.com.

How: From Setup, in the Quick Find box, enter Release Updates. In the Release Updates page, you can find security alert cards. Security alerts functionality remains the same.

https://help.salesforce.com/s/articleView?id=release-notes.rn_sa_change.htm&release=228&type=5

In case you missed it in the last release, Release Updates offers a more detailed view of information previously found in Critical Updates and Security Alerts. Find all of your updates and alerts in an improved format. No more clicking through several locations to review important update information for your Salesforce org.

Where: This change applies to Lightning Experience and Salesforce Classic in all editions, except Database.com.

How: From Setup, in the Quick Find box, enter Release Updates.

https://help.salesforce.com/s/articleView?id=release-notes.rn_ru_ga.htm&release=228&type=5

Identity for Customers and Partners and Data Protection and Privacy topics moved to a new home in the release notes: Customer 360 Truth. Monitor multiple orgs with Security Center (generally available). Review and update your TLS ciphers, and take advantage of more Crypto class values.

https://help.salesforce.com/s/articleView?id=release-notes.rn_security_other_changes.htm&release=228&type=5

Real-Time Event Monitoring helps you identify and respond to anomalous API usage, monitor bulk API queries, and audit when users download data in Einstein Analytics. The Event Monitoring Analytics App helps you analyze exceptions without manually uploading datasets, and legacy Transaction Security framework is disabled. Shield Platform Encryption continues to offer another layer of security for more personally identifiable data. Encrypt Health Cloud data and fields on the Identity object.

https://help.salesforce.com/s/articleView?id=release-notes.rn_security_shield.htm&release=228&type=5

New Salesforce orgs get a My Domain by default and existing orgs must define one by Winter ’22. For customers with a My Domain, we’re removing instance names from My Domain URLs through a release update.

https://help.salesforce.com/s/articleView?id=release-notes.rn_security_domains.htm&release=228&type=5

Changes in Salesforce Identity start with a Multi-Factor Authentication Assistant that helps you safeguard your Salesforce data. We also retired two-factor authentication terminology and moved to the industry standard term of multi-factor authentication. You can enhance your Salesforce org’s security with Mobile Device Tracking. Web applications can now enable Cross-Origin Resource Sharing (CORS) to access resources from certain Salesforce OAuth endpoints. Secure outbound SAML messages when Salesforce is the identity provider.

https://help.salesforce.com/s/articleView?id=release-notes.rn_security_auth_and_identity.htm&release=228&type=5

Maintain security, privacy, and governance policies for multiple orgs with Security Center, now generally available. View and manage mobile device access to your org with Mobile Device Tracking, generally available. New Salesforce orgs get a My Domain by default and existing orgs must define one. Keep a closer eye on your org with three new Real-Time Monitoring Events. Encrypt fields associated with health intake documents, and encrypt some Financial Services Cloud documents.

https://help.salesforce.com/s/articleView?id=release-notes.rn_security.htm&release=228&type=5

To better protect your Salesforce org’s data, we restricted who can view record names in lookup fields. Users must have Read access to these records or the View All Lookup Record Names permission to view this data. This update also applies to system fields, such as Created By and Last Modified By. This update was first made available in Spring ’20.

Where: This change applies to Lightning Experience and Salesforce Classic in all editions.

When: Salesforce enforces this update in Spring ’21. To get the major release upgrade date for your instance, go to Trust Status, search for your instance, and click the maintenance tab.

Why: Admins have more control over what users see in records. Currently, users can view record names in lookup fields without Read access to those records.

https://help.salesforce.com/s/articleView?id=release-notes.rn_forcecom_general_view_lookup_update.htm&release=228&type=5