This release is malicious. The 1.2.1 replaces version 1.2 of Insert HTML Code Snippet with a modified version 1.2 of Insert PHP Code Snippet.
Do not install this.
One of the malicious files has a SHA256 of 54a33bc765e1975884ee6cd6dde4fa906387fcb88eb9a62b394018f9dcb494bc.
More details https://goo.gl/GlK5ia
