diff --git a/ChangeLog.txt b/ChangeLog.txt
index e317f438..38cb14e1 100644
--- a/ChangeLog.txt
+++ b/ChangeLog.txt
@@ -1,4 +1,4 @@
-2.0.21 - 2024-xx-xx
+2.0.21 - 2025-03-06
 ===================
 
 Security:
diff --git a/www/pages/download.md b/www/pages/download.md
index 3200eba4..f51bd953 100644
--- a/www/pages/download.md
+++ b/www/pages/download.md
@@ -11,7 +11,7 @@
 
 # Source
 
-* [mosquitto-2.0.20.tar.gz](https://mosquitto.org/files/source/mosquitto-2.0.20.tar.gz) ([GPG signature](https://mosquitto.org/files/source/mosquitto-2.0.20.tar.gz.asc))
+* [mosquitto-2.0.21.tar.gz](https://mosquitto.org/files/source/mosquitto-2.0.21.tar.gz) ([GPG signature](https://mosquitto.org/files/source/mosquitto-2.0.21.tar.gz.asc))
 * [Git source code repository](https://github.com/eclipse/mosquitto) (github.com)
 
 Older downloads are available at [https://mosquitto.org/files/](../files/)
@@ -24,7 +24,8 @@ distributions.
 
 ## Windows
 
-* [mosquitto-2.0.20-install-windows-x64.exe](https://mosquitto.org/files/binary/win64/mosquitto-2.0.20-install-windows-x64.exe)
+* [mosquitto-2.0.21-install-windows-x64.exe](https://mosquitto.org/files/binary/win64/mosquitto-2.0.21-install-windows-x64.exe)
+* [mosquitto-2.0.21-install-windows-x86.exe](https://mosquitto.org/files/binary/win32/mosquitto-2.0.21-install-windows-x86.exe)
 
 Older installers can be found at [https://mosquitto.org/files/binary/](https://mosquitto.org/files/binary/).
 
diff --git a/www/posts/2024/10/version-2-0-19-released.md b/www/posts/2024/10/version-2-0-19-released.md
index 8cc0f3bd..d3677903 100644
--- a/www/posts/2024/10/version-2-0-19-released.md
+++ b/www/posts/2024/10/version-2-0-19-released.md
@@ -11,12 +11,12 @@
 
 Version 2.0.19 of Mosquitto has been released. This is a security and bugfix release.
 
-Security:
+# Security
 - Fix mismatched subscribe/unsubscribe with normal/shared topics.
 - Fix crash on bridge using remapped topic being sent a crafted packet.
 - Don't allow SUBACK with missing reason codes in client library.
 
-Broker:
+# Broker
 - Fix assert failure when loading a persistence file that contains
   subscriptions with no client id.
 - Fix local bridges being incorrectly expired when `persistent_client_expiration`
@@ -25,13 +25,13 @@ Broker:
 - Fix mismatched subscribe/unsubscribe with normal/shared topics.
 - Fix crash on bridge using remapped topic being sent a crafted packet.
 
-Client library:
+# Client library
 - Fix some error codes being converted to string as "unknown". Closes [#2579].
 - Clear SSL error state to avoid spurious error reporting. Closes [#3054].
 - Fix "payload format invalid" not being allowed as a PUBREC reason code.
 - Don't allow SUBACK with missing reason codes.
 
-Build:
+# Build
 - Thread support is re-enabled on Windows.
 
 [#2579]: https://github.com/eclipse/mosquitto/issues/2579
diff --git a/www/posts/2024/10/version-2-0-20-released.md b/www/posts/2024/10/version-2-0-20-released.md
index 1455a3d4..b272281c 100644
--- a/www/posts/2024/10/version-2-0-20-released.md
+++ b/www/posts/2024/10/version-2-0-20-released.md
@@ -11,20 +11,20 @@
 
 Version 2.0.20 of Mosquitto has been released. This is a bugfix release.
 
-Broker:
+# Broker
 - Fix QoS 1 / QoS 2 publish incorrectly returning "no subscribers".
   Closes #3128.
 - Open files with appropriate access on Windows. Closes #3119.
 - Don't allow invalid response topic values.
 - Fix some strict protocol compliance issues. Closes #3052.
 
-Client library:
+# Client library
 - Fix cmake build on OS X. Closes #3125.
 
-Build:
+# Build
 - Fix build on NetBSD
 
-[#3052]: https://github.com/eclipse/mosquitto/issues/3128
-[#3119]: https://github.com/eclipse/mosquitto/issues/3128
-[#3125]: https://github.com/eclipse/mosquitto/issues/3128
+[#3052]: https://github.com/eclipse/mosquitto/issues/3052
+[#3119]: https://github.com/eclipse/mosquitto/issues/3119
+[#3125]: https://github.com/eclipse/mosquitto/issues/3125
 [#3128]: https://github.com/eclipse/mosquitto/issues/3128
diff --git a/www/posts/2025/03/version-2-0-21-released.md b/www/posts/2025/03/version-2-0-21-released.md
new file mode 100644
index 00000000..4526f309
--- /dev/null
+++ b/www/posts/2025/03/version-2-0-21-released.md
@@ -0,0 +1,63 @@
+<!--
+.. title: Version 2.0.21 released.
+.. slug: version-2-0-21-released
+.. date: 2025-03-06 14:53:38 UTC
+.. tags: Releases
+.. category:
+.. link:
+.. description:
+.. type: text
+-->
+
+Version 2.0.21 of Mosquitto has been released. This is a security and bugfix release.
+
+Security:
+- Fix leak on malicious SUBSCRIBE by authenticated client.
+  Closes [eclipse #248].
+- Further fix for CVE-2023-28366.
+
+# Broker
+- Fix clients sending a RESERVED packet not being quickly disconnected.
+  Closes [#2325].
+- Fix `bind_interface` producing an error when used with an interface that has
+  an IPv6 link-local address and no other IPv6 addresses. Closes [#2696].
+- Fix mismatched wrapped/unwrapped memory alloc/free in properties. Closes [#3192].
+- Fix `allow_anonymous false` not being applied in local only mode. Closes [#3198].
+- Add `retain_expiry_interval` option to fix expired retained message not
+  being removed from memory if they are not subscribed to. Closes [#3221].
+- Produce an error if invalid combinations of cafile/capath/certfile/keyfile
+  are used. Closes [#1836]. Closes [#3130].
+- Backport keepalive checking from develop to fix problems in current
+  implementation. Closes [#3138].
+
+# Client library
+- Fix potential deadlock in mosquitto_sub if `-W` is used. Closes [#3175].
+
+# Apps
+- mosquitto_ctrl dynsec now also allows `-i` to specify a clientid as well as
+  `-c`. This matches the documentation which states `-i`. Closes [#3219].
+Client library:
+- Fix threads linking on Windows for static libmosquitto library
+  Closes [#3143]
+
+# Build
+- Fix Windows builds not having websockets enabled.
+- Add tzdata to docker images
+
+# Tests
+- Fix 08-ssl-connect-cert-auth-expired and 08-ssl-connect-cert-auth-revoked
+  tests when under load. Closes [#3208].
+
+[#eclipse 248]: https://gitlab.eclipse.org/security/vulnerability-reports/-/issues/248
+[#1836]: https://github.com/eclipse/mosquitto/issues/1836
+[#2325]: https://github.com/eclipse/mosquitto/issues/2325
+[#2696]: https://github.com/eclipse/mosquitto/issues/2696
+[#3130]: https://github.com/eclipse/mosquitto/issues/3130
+[#3138]: https://github.com/eclipse/mosquitto/issues/3138
+[#3143]: https://github.com/eclipse/mosquitto/issues/3143
+[#3175]: https://github.com/eclipse/mosquitto/issues/3175
+[#3192]: https://github.com/eclipse/mosquitto/issues/3192
+[#3198]: https://github.com/eclipse/mosquitto/issues/3198
+[#3208]: https://github.com/eclipse/mosquitto/issues/3208
+[#3219]: https://github.com/eclipse/mosquitto/issues/3219
+[#3221]: https://github.com/eclipse/mosquitto/issues/3221