If you’re enrolled in the Windows 10 Extended Security Updates (ESU) program, there’s some important info you should know about the latest security patch. Microsoft recently released KB5082200 on April 14, 2026, which brings fixes and security enhancements for Windows 10 versions 21H2 and 22H2. This update is part of the ongoing support for those still on Windows 10, but it’s only available to ESU users or those with specific licenses like Windows 10 Enterprise LTSC 2021 or 2024.

This update mainly addresses bugs and security issues. One notable fix is for a problem that prevented some users from signing into apps using their Microsoft accounts. It also enhances protection against phishing attacks that use Remote Desktop files (.rdp). Another feature is the addition of dynamic reporting for Secure Boot status, which now shows a green, yellow, or red badge in the Windows Security app, giving users a quick way to see if Secure Boot is working properly.

Why This Update Matters for IT Teams

Since this is a security update, Microsoft recommends applying it as soon as possible. Waiting a few weeks allows time for any reports of issues to surface, but delaying too long could leave systems vulnerable. Once the update has been out for a bit, IT teams should check for problems and then proceed with deployment if all looks good.

Microsoft has also acknowledged a specific issue with this release. Devices that have certain BitLocker Group Policy settings might be prompted to enter their recovery key. This isn’t widespread, but it’s something to keep in mind. IT teams should review Microsoft’s KB5082200 page for details on workarounds and further guidance.

Earlier Updates You Should Be Aware Of

Prior to the April update, Microsoft released several other patches for Windows 10 ESU. For example, in March 2026, KB5078885 was issued to expand device targeting for Secure Boot certificates, ensuring only devices that successfully complete update signals get new certificates. This helps keep the rollout safe and controlled.

In February 2025, KB5075912 addressed a bug affecting folder renaming in File Explorer, especially with desktop.ini files. Users could now see custom folder names properly again. Additionally, security updates in this release bolstered overall protection.

Back in January 2026, Microsoft issued multiple out-of-band updates, such as KB5078129, which fixed issues with cloud storage apps like OneDrive and Dropbox, preventing hangs and errors when opening or saving files. Another January patch, KB5077796, fixed Remote Desktop sign-in failures affecting Windows apps. These quick patches show Microsoft’s quick response to serious bugs affecting productivity and security.

Even earlier, updates like KB5073724 improved device targeting for Secure Boot certificates, while KB5074976 fixed a bug in Message Queuing that could have caused message delays or failures in enterprise setups. PowerShell’s Invoke-WebRequest command also received a security warning addition in December 2025 to alert users of potential script risks.

Staying updated is key for security, especially with Windows 10 approaching the end of mainstream support. If you’re on the ESU plan, it’s a good idea to review these updates regularly and apply them promptly. Microsoft continues to provide essential security fixes to help protect your systems against evolving threats.

Inspired by

• https://www.computerworld.com/article/1682225/windows-10-a-guide-to-the-updates.html

Sources

• gmpg.org
• microsoft.com
• microsoft.com
• microsoft.com
• microsoft.com