Package Updates in Red Hat Virtualization Servers

Hello,

We are running the lates Red Hat Virtualization on RHEL 8 servers. The installation doc for RHV says to set the release in RHEL 8 to 8.6

subscription-manager release --set=8.6

There is a Red Hat Portal article that explains why you cannot allow your OS to be upgraded to 8.7.

My question is how do others update their operating system packages in this environment. Specifically, when new packages come out in the main rhel 8 repository, but not the 8.6 specific repository, what is the strategy.

For example, our security scanner just reported a vulnerability in the rsync package. If we were running a RHEL 8.7 server, the rhel-8-for-x86_64-baseos-rpms repo has the newest version, which is rsync 3.1.3-19.el8_7.1. But since we set the release at 8.6, the operating system is pulling from the rhel-8-for-x86_64-baseos-eus-rpms repo and only showing rsync 3.1.3-14.el8_6.4. This is the version currently running on the servers and is the one that is vulnerable, according to our software.

Red Hat support says our only option is to unset the release, disable the rhel-8-for-x86_64-baseos-eus-rpms repo, update the package, and the re-set the release to 8.6.

But I am worried that this may create some inconsistencies int he operating system and break something important?

What, if anything , are others doing to solve this problem?

Thank in advance