diff --git a/Changes.md b/Changes.md
index 7c103e38..d4e1e6fb 100644
--- a/Changes.md
+++ b/Changes.md
@@ -2,9 +2,10 @@
 
 [Sidekiq Changes](https://github.com/mperham/sidekiq/blob/main/Changes.md) | [Sidekiq Pro Changes](https://github.com/mperham/sidekiq/blob/main/Pro-Changes.md) | [Sidekiq Enterprise Changes](https://github.com/mperham/sidekiq/blob/main/Ent-Changes.md)
 
-HEAD
+6.4.0
 ---------
 
+- **SECURITY**: Validate input to avoid possible DoS in Web UI.
 - Add **strict argument checking** [#5071]
   Sidekiq will now log a warning if JSON-unsafe arguments are passed to `perform_async`.
   Add `Sidekiq.strict_args!(false)` to your initializer to disable this warning.
diff --git a/lib/sidekiq/version.rb b/lib/sidekiq/version.rb
index bf02184f..20e09f08 100644
--- a/lib/sidekiq/version.rb
+++ b/lib/sidekiq/version.rb
@@ -1,5 +1,5 @@
 # frozen_string_literal: true
 
 module Sidekiq
-  VERSION = "6.3.2"
+  VERSION = "6.4.0"
 end