jQuery before 3.4.0, mishandles jQuery.extend(true, {}, ...) because ofObject.prototype pollution. If an unsanitized source object contained an enumerable __proto__property, it could extend the native Object.prototype. The bundled version of jQuery used by the Django admin has been patched to allow for the select2library's use of jQuery.extend().