Security MRs in the `gitlab-org/security` group don't require merge
request IDs for changelog entries, nor do they have strict target branch
requirements.