If you look at which computers are relevant to the “Notepad++ (x64) 8.9.1 Available“ fixlet in Updates for Windows Applications site, any computer that is relevant to it, would have it installed already. And should have a vulnerable version installed. Deploying this fixlet would update them to a version that is no longer vulnerable, but you don’t know if those systems could have been compromised.
Also, I posted a link to a fixlet and analysis that checks for indicators of compromise for Notepad++