By Delia / Last update December 10, 2024

Windows 10 is getting its optional update and as usual, it is available for versions 20H2, 21H1 and 21H2. The update is KB5011543, which raises the build number to 19042.1620, 19043.1620, or 19044.1620, depending on whether you're using Windows 10 version 20H2, 21H1, or 21H2. This update actually comes with a new feature called Search Highlights, which has been previously announced for Insiders. It's another improvement to the search experience.

windows 10

New feature: Search Highlights

Search Highlights will showcase particularly interesting moments of the day, such as holidays, anniversaries and other real-time educational moments across the board and in the region. To see more details at a glance, hover, click or tap the illustration in the search box.

For enterprise customers, the search highlights will include the latest updates from the organization with recommendations for people, documents and more.

Search Highlights will be rolled out to Windows 10 customers in the next few weeks. We are using a phased measurement approach. It will be widely available in the next few months. For more information, see Group Configuration: Search Windows.

search highlights

How to get this update

Windows Update or Microsoft Update: Go to Settings > Update & Security > Windows Update. In the Optional updates available area, you'll find In the Optional updates available area, you'll find the link to download and install the update.

Windows Update for Business: Not available now. These changes will be included in the next security update to this channel.

Microsoft Update Catalog: To get the standalone package for this update, go to the Microsoft Update Catalog website.

Windows Server Update Services (WSUS): You can import this update into WSUS manually. See the Microsoft Update Catalog for instructions.

Note: For Windows Server Update Services (WSUS) deployment or when installing the standalone package from Microsoft Update Catalog, if your devices do not have the May 11, 2021 update (KB5003173) or later LCU, you must install the special standalone August 10, 2021 SSU (KB5005260).

Changes and improvements in Windows 10 KB5011543

  • Provides the ability to change the color of the toast button for applications that use Windows Notifications to send notifications in the OS to more easily identify success and critical scenarios. This feature also makes notifications visually more compact.
  • For applications that use Windows Notifications to send notifications in the operating system, a new policy has been added to expand the first three notifications of the application in the Action Center by default. This feature displays multiple notifications that users can interact with at the same time.
  • Resolved an issue that caused searchindexer.exe to stop responding during uninstall operations in a remote desktop setup environment.
  • Addresses an issue that affected searchindexer.exe and prevented Microsoft Outlook's offline search from returning recent messages.
  • Resolved an issue that could disable Windows when a user changed the National Language Support (NLS) version from 6.3 to 6.2.
  • Addressed an issue where modern browsers did not correctly render HTML generated by gpresult / h.
  • Addressed an issue that caused a "Access Denied" exception to be thrown for a file when running a PowerShell test on AppLocker.
  • Addresses an issue that could cause the Group Policy service to stop processing telemetry information for Group Policy registry preferences.
  • Addresses an issue that could prevent DNS server query resolution policies from working as expected when specifying a fully qualified domain name (FQDN) and subnet condition.
  • Resolved a heap leak in PacRequestorEnforcement that degraded the performance of domain controllers.
  • Resolved an issue affecting Key Distribution Center (KDC) agents that did not properly obtain Kerberos tickets to sign Key Trust Windows Hello for Business.
  • Added support for Microsoft Account (MSA) Pass-through scenarios in Azure Active Directory (AAD) Web Account Manager (WAM).
  • Resolved an issue with logging Event ID 37 in certain password change scenarios, including failover Cluster Name Object (CNO) or Virtual Computer Object (VCO) password changes.
  • Addresses an issue that could inadvertently add Trusted Platform Module (TPM) protectors when using a silent BitLocker enablement policy.
  • Resolved an issue that prevented the User Account Control (UAC) dialog from properly displaying applications requesting elevated privileges.
  • Resolved an issue that caused the Move-ADObject command to fail when moving computer accounts across domains. The error message was "Multiple values were specified for an attribute that can only have one value."
  • Resolves an issue that prevented Event 4739 from displaying new values for certain properties after a policy change.
  • Resolved an issue that prevented Android device users from logging into certain Microsoft applications, such as Microsoft Outlook or Microsoft Teams. This issue occurred after a rolling token signing and decrypting a certificate, resetting a user's password, or an administrator revoking a refresh token.
  • Resolved an issue that caused the "Back" button on the credentials window (in the login location) to not be visible in high-contrast black mode.
  • Resolved an issue that could cause domain connections to fail in environments that use disconnected DNS hostnames.
  • Resolved an issue where the back button of the credentials window for user login was not visible in high-contrast black mode.
  • Resolved an issue that prevented access to server information block (SMB) shares using IP addresses when SMB hardening was enabled.
  • Resolves an issue that occurs when the Best Practice Analyzer (BPA) values for SMB are not updated for newer platforms.
  • Resolves an issue that caused a stop error 0x1E in the SMB server (srv2.sys).
  • Resolves an issue that caused a mismatch between NetBIOS and DNS Active Directory domains when a user created a cluster.
  • Resolves an issue that caused the Network File System (NFS) Redirector to stop working when converting text files to PDF (error 0x50).
  • Resolved a known issue that could cause some devices to receive an error message on the blue screen when these devices were paired with a Bluetooth device. This issue occurred when certain Configuration Service Provider (CSP) policies affected Bluetooth A2dp profiles.