Update CHANGELOG.md for 13.2.3

[ci skip]

Update CHANGELOG.md for 13.2.3
[ci skip]
3f93f552 · GitLab Release Tools Bot · bb53146a · 3f93f552 · bb53146a · bb53146a
Commit 3f93f552 authored Aug 05, 2020 by GitLab Release Tools Bot
12 changed files
--- a/CHANGELOG.md
+++ b/CHANGELOG.md
@@ -2,6 +2,24 @@
 documentation](doc/development/changelog.md) for instructions on adding your own
 entry.

+## 13.2.3 (2020-08-05)
+
+### Security (12 changes)
+
+- Update kramdown gem to version 2.3.0.
+- Enforce 2FA on Doorkeeper controllers.
+- Revoke OAuth grants when a user revokes an application.
+- Refresh project authorizations when transferring groups.
+- Stop excess logs from failure to send invite email when group no longer exists.
+- Verify confirmed email for OAuth Authorize POST endpoint.
+- Fix XSS in Markdown reference tooltips.
+- Fix XSS in milestone tooltips.
+- Fix xss vulnerability on jobs view.
+- Block 40-character hexadecimal branches.
+- Prevent a temporary access escalation before group memberships are recalculated when specialized project share workers are enabled.
+- Update GitLab Runner Helm Chart to 0.18.2.
+
+
 ## 13.2.2 (2020-07-29)

 ### Fixed (3 changes)

--- a/changelogs/unreleased/211-update-kramdown.yml
+++ b/changelogs/unreleased/211-update-kramdown.yml
---
-title: Update kramdown gem to version 2.3.0
-merge_request:
-author:
-type: security
--- a/changelogs/unreleased/security-195-2fa-applications-view.yml
+++ b/changelogs/unreleased/security-195-2fa-applications-view.yml
---
-title: Enforce 2FA on Doorkeeper controllers
-merge_request:
-author:
-type: security
--- a/changelogs/unreleased/security-200-dblessing-insufficient-oauth-revocation.yml
+++ b/changelogs/unreleased/security-200-dblessing-insufficient-oauth-revocation.yml
---
-title: Revoke OAuth grants when a user revokes an application
-merge_request:
-author:
-type: security
--- a/changelogs/unreleased/security-202687-members-transfer-problem.yml
+++ b/changelogs/unreleased/security-202687-members-transfer-problem.yml
---
-title: Refresh project authorizations when transferring groups
-merge_request:
-author:
-type: security
--- a/changelogs/unreleased/security-check-group-exists-before-email.yml
+++ b/changelogs/unreleased/security-check-group-exists-before-email.yml
---
-title: Stop excess logs from failure to send invite email when group no longer exists
-merge_request:
-author:
-type: security
--- a/changelogs/unreleased/security-dblessing-oauth-vuln-2.yml
+++ b/changelogs/unreleased/security-dblessing-oauth-vuln-2.yml
---
-title: Verify confirmed email for OAuth Authorize POST endpoint
-merge_request:
-author:
-type: security
--- a/changelogs/unreleased/security-fix-xss-in-markdown-reference-tooltips.yml
+++ b/changelogs/unreleased/security-fix-xss-in-markdown-reference-tooltips.yml
---
-title: Fix XSS in Markdown reference tooltips
-merge_request:
-author:
-type: security
--- a/changelogs/unreleased/security-fix-xss-in-milestone-tooltip.yml
+++ b/changelogs/unreleased/security-fix-xss-in-milestone-tooltip.yml
---
-title: Fix XSS in milestone tooltips
-merge_request:
-author:
-type: security
--- a/changelogs/unreleased/security-jobs-view-xss.yml
+++ b/changelogs/unreleased/security-jobs-view-xss.yml
---
-title: Fix xss vulnerability on jobs view
-merge_request:
-author:
-type: security
--- a/changelogs/unreleased/security-rm-202690.yml
+++ b/changelogs/unreleased/security-rm-202690.yml
---
-title: Block 40-character hexadecimal branches
-merge_request:
-author:
-type: security
--- a/changelogs/unreleased/security-specialized_project_share_worker_to_respect_access_level.yml
+++ b/changelogs/unreleased/security-specialized_project_share_worker_to_respect_access_level.yml
---
-title: Prevent a temporary access escalation before group memberships are recalculated when specialized project share workers are enabled
-merge_request:
-author:
-type: security