Yes. 2026.6.0-latest came before 2026.6.0, and most commits labelled 2026.6.0-latest are vulnerable to these security issues.
So if people are running 2026.6.0-latest, they need to update to 2026.7.0-latest. (or 2026.6.0, but that would mean switching to the ‘release’ channel instead of ‘latest’)