A01 - 2021: Broken Access Control
A02 - 2021: Cryptographic Failures
A05 - 2021: Security Misconfiguration
A06 - 2021: Vulnerable and Outdated Components
A07 - 2021: Identification and Authentication Failures
A08 - 2021: Software and Data Integrity Failures
A09 - 2021: Security Logging and Monitoring Failures
A10 - 2021: SSRF (Server side request forgery)
The following are gone:
The following are all new: