There is no reference or warning in release notes about cacerts being replaced.

Due to this we faced problems with customer deployments where we have self signed certificates generated with gencert for Email, LDAPS communication etc.

Please guys give us a heads-up before such upgrades so we can plan accordingly.