Before dealing with how this sucks and doesn't, download another browser (Vivaldi, Chrome, Brave...etc.) and use it until the Edge/IE vulnerability is fixed. And...last week Google revealed a Windows vulnerability, as well.
You can read about the Edge/IE vulnerability here, if you're of a mind to do so: https://bugs.chromium.org/p/project-zero/issues/detail?id=1011
"It is Google's policy to disclose any vulnerability after 90 days if the notified company did not publish a publicly available patch for the issue."...well there's a plus and a minus to that.
First, reality: Is there any malware out there exploiting that security problem? If not, Google just might be doing the black hats' work for them. If there is malware - well, in the case of the Windows problem, there isn't a whole helluva lot a user can do, is there? So why notify? MS knows, you told them. Now all you're doing, again, is notifying the black hats. In the browser's case...yes, by all means, notify, because people can choose alternatives.
Sorry...sometimes Google lacks any semblance of common sense, for "one upsmanship". And that just sucks.