Add latest changes from gitlab-org/security/gitlab@13-8-stable-ee

CHANGELOG.md

@@ -2,6 +2,17 @@
 documentation](doc/development/changelog.md) for instructions on adding your own
 entry.
 
+## 13.8.2 (2021-02-01)
+
+### Security (5 changes)
+
+- Filter sensitive GraphQL variables from logs.
+- Avoid exposing release links when the user cannot read git-tag/repository.
+- Sanitize target branch on MR page.
+- Fix DNS rebinding protection bypass when allowing an IP address in Outbound Requests setting.
+- Add routes for unmatched url for not-get requests.
+
+
 ## 13.8.1 (2021-01-26)
 
 ### Fixed (3 changes)

GITALY_SERVER_VERSION

-13.8.1
\ No newline at end of file
+13.8.2
\ No newline at end of file

changelogs/unreleased/security-filter-graphql-logs.yml

----
-title: Filter sensitive GraphQL variables from logs
-merge_request:
-author:
-type: security

changelogs/unreleased/security-guest-can-read-tag-from-releases.yml

----
-title: Avoid exposing release links when the user cannot read git-tag/repository
-merge_request:
-author:
-type: security

changelogs/unreleased/security-sanitize-target-branch.yml

----
-title: Sanitize target branch on MR page
-merge_request:
-author:
-type: security

changelogs/unreleased/security-ssrf-outbound-request.yml

----
-title: Fix DNS rebinding protection bypass when allowing an IP address in Outbound Requests setting
-merge_request:
-author:
-type: security

changelogs/unreleased/secutity-404-difference.yml

----
-title: Add routes for unmatched url for not-get requests
-merge_request:
-author:
-type: security