Released just today, WordPress 4.4.2 is the second security update to the 4.4 lineup. Two security issues plaguing previous version have been patched: a possible SSRF (Server Side Request Forgery) for certain local URIs and an open redirection attack. In addition, 17 bug fixes from 4.4 and 4.4.1 are included in this update.
WordPress 4.4.2 Auto Update
Unless your site has minor release updates turned off, your site should auto update shortly after a minor version is released. You can always update on your own or even re-install the current WordPress version by visiting Dashboard > Updates through your site's admin area.
Source: WordPress.org News