The most up-to-date version of Entity Embed for Drupal 7 is 7.x-2.x. This version requires the Dialog module.
The 7.x-3.x development version of Entity Embed has a requirement of the Editor module, which in turn also has a dependency on the Dialog module.
As of late, Dialog has moved into a state where it is no longer covered by Drupal's security advisory policy. This means Dialog, and Entity Embed by association, are vulnerable to security exploits.
Either the 7.x versions of Entity Embed need to be marked as not covered by Drupal's security advisory policy, or effort needs to be put toward getting Dialog security compliant.
Closed: outdated
2.0
Miscellaneous
It is used for security vulnerabilities which do not need a security advisory. For example, security issues in projects which do not have security advisory coverage, or forward-porting a change already disclosed in a security advisory. See Drupal’s security advisory policy for details. Be careful publicly disclosing security vulnerabilities! Use the “Report a security vulnerability” link in the project page’s sidebar. See how to report a security issue for details.
Not all content is available!
It's likely this issue predates Contrib.social: some issue and comment data are missing.