Update CHANGELOG.md for 12.5.1

[ci skip]

Update CHANGELOG.md for 12.5.1
[ci skip]
0994af92 · GitLab Release Tools Bot · 1bc5f5c4 · 0994af92 · 1bc5f5c4 · 1bc5f5c4
Commit 0994af92 authored Nov 26, 2019 by GitLab Release Tools Bot
9 changed files
--- a/CHANGELOG.md
+++ b/CHANGELOG.md
@@ -2,6 +2,20 @@
 documentation](doc/development/changelog.md) for instructions on adding your own
 entry.

+## 12.5.1
+
+### Security (8 changes)
+
+- Check permissions before showing a forked project's source.
+- Encrypt application setting tokens.
+- Update Workhorse and Gitaly to fix a security issue.
+- Hide commit counts from guest users in Cycle Analytics.
+- Limit potential for DNS rebind SSRF in chat notifications.
+- Ensure are cleaned by ImportExport::AttributeCleaner.
+- Remove notes regarding Related Branches from Issue activity feeds for guest users.
+- Escape namespace in label references to prevent XSS.
+
+
 ## 12.5.0

 ### Security (15 changes)

--- a/changelogs/unreleased/security-28802-respect-fork-parent-visibility-ee.yml
+++ b/changelogs/unreleased/security-28802-respect-fork-parent-visibility-ee.yml
---
-title: Check permissions before showing a forked project's source
-merge_request:
-author:
-type: security
--- a/changelogs/unreleased/security-2943-encrypt-plaintext-tokens.yml
+++ b/changelogs/unreleased/security-2943-encrypt-plaintext-tokens.yml
---
-title: Encrypt application setting tokens
-merge_request:
-author:
-type: security
--- a/changelogs/unreleased/security-29660-update-dependencies.yml
+++ b/changelogs/unreleased/security-29660-update-dependencies.yml
---
-title: Update Workhorse and Gitaly to fix a security issue
-merge_request:
-author:
-type: security
--- a/changelogs/unreleased/security-ag-cycle-analytics-guest-permissions.yml
+++ b/changelogs/unreleased/security-ag-cycle-analytics-guest-permissions.yml
---
-title: Hide commit counts from guest users in Cycle Analytics.
-merge_request:
-author:
-type: security
--- a/changelogs/unreleased/security-dns-rebind-ssrf-in-slack-notifications.yml
+++ b/changelogs/unreleased/security-dns-rebind-ssrf-in-slack-notifications.yml
---
-title: Limit potential for DNS rebind SSRF in chat notifications
-merge_request:
-author:
-type: security
--- a/changelogs/unreleased/security-exclude_ids_attribute_cleaning.yml
+++ b/changelogs/unreleased/security-exclude_ids_attribute_cleaning.yml
---
-title: Ensure are cleaned by ImportExport::AttributeCleaner
-merge_request:
-author:
-type: security
--- a/changelogs/unreleased/security-filter-related-branches-from-activity-feed.yml
+++ b/changelogs/unreleased/security-filter-related-branches-from-activity-feed.yml
---
-title: Remove notes regarding Related Branches from Issue activity feeds for guest
-  users
-merge_request:
-author:
-type: security
--- a/changelogs/unreleased/security-fix-xss-in-label-namespace.yml
+++ b/changelogs/unreleased/security-fix-xss-in-label-namespace.yml
---
-title: Escape namespace in label references to prevent XSS
-merge_request:
-author:
-type: security