Join the kubernetes-security-announce group for security and vulnerability announcements.
You can also subscribe to an RSS feed of the above using this link.
Instructions for reporting a vulnerability can be found on the Kubernetes Security and Disclosure Information page.
Information about supported Kubernetes versions can be found on the Kubernetes version and version skew support policy page on the Kubernetes website.