Take a look at this article on the subject of security first: https://developer.www.ads-software.com/advanced-administration/security/hardening/
There are also various options for what you are looking for. Many security plugins provide such notifications, but usually only as a list of newly discovered vulnerabilities and not specifically for your projects. WordFence, for example, also has something like this: https://www.wordfence.com/subscribe-to-the-wordfence-email-list/ – Solid Security also has something similar: https://solidwp.com/blog/
WordPress itself has a page here: https://www.ads-software.com/news/category/security/ – you can also subscribe to it as an RSS feed: https://www.ads-software.com/news/category/security/feed/
With regard to your own WordPress, you should opt for a security plugin that provides you with such information. You can find a list of such plugins here: https://www.ads-software.com/plugins/tags/security/
There are also hosters who can help you with this. Kinsta, for example, sends emails quite promptly if you use a plugin in your project that has a known security vulnerability.
