Labels widget - Fix search input

See merge request gitlab-org/gitlab!72659

Source & Content for hand raise & trial leads

See merge request gitlab-org/gitlab!72639

Set Content-Length header on Dependency Proxy injection

See merge request gitlab-org/gitlab!72670

Improve feature tests

See merge request gitlab-org/gitlab!72326

Ensure commits limit is always positive

See merge request gitlab-org/gitlab!72274

E2E: Check for failure presence for bulk imports

See merge request gitlab-org/gitlab!72673

Global Search - Update Apply Button

See merge request gitlab-org/gitlab!72531

Update BitBucket Server importer username mapping

See merge request gitlab-org/gitlab!66653

Review feedback

Split header to be reused
Split footer to be reused

Fix some instances of rubocop:disable QA/SelectorUsage

Quarantine flaky DST specs

See merge request gitlab-org/gitlab!72748

Update GroupSync section to enhance clarity

See merge request gitlab-org/gitlab!72749

Enable MR approval setting cascading by default

See merge request gitlab-org/gitlab!72675

Revert change to review-cleanup rule

See merge request gitlab-org/gitlab!72489

Allow encoded newlines in HTTP URLs

See merge request gitlab-org/gitlab!72655

E2E: Reduce repeater log verbosity if first attempt is successfull

See merge request gitlab-org/gitlab!72455

Add documentation for all Browser Based DAST scanner Passive checks

See merge request gitlab-org/gitlab!72354

Fix ZenTao spelling

See merge request gitlab-org/gitlab!72561

doc: Document change in Gitaly binary paths

See merge request gitlab-org/gitlab!72702

Previously we explicitly considered the Git scheme, but this allowed FTP
and other protocols to have multi-line URLs. We now allowed encoded
newlines in HTTP(s) calls.

We saw in
https://gitlab.com/gitlab-com/gl-infra/production/-/issues/5756 that
restricting newlines in query strings blocks Google Cloud Storage (GCS)
URLs from working since GCS uses a multi-line `Signature` query string.

The original check was introduced to prevent CRLF injection in the Git
protocol (https://gitlab.com/gitlab-org/gitlab/-/issues/8438). Git has
since added protection against newlines in the URL
(https://github.com/git/git/commit/a02ea577174ab8ed18f847cf1693f213e0b9c473),
but they haven't blocked the carriage return (CR) case.

To ensure defense in depth, we continue to block Git requests with CRLF,
but allow multi-line HTTP queries.

Changelog: fixed

Hide badge row if there are no pipeline badges

See merge request gitlab-org/gitlab!72538

Downgrade EMOJI_VERSION to 1

See merge request gitlab-org/gitlab!72730

Rename "Zentao" to "ZenTao".
Because "ZenTao" is its official English name.

Changelog: changed
EE: true

Merge branch '342722-fetch-shared-runners-constants-from-the-backend-for-the-frontend' into 'master'

Use shared runners constants from the backend for the frontend

See merge request gitlab-org/gitlab!72532

Merge branch '342795-use-yaml-file-to-define-gitlab_schema-reduce-allowlist-cross-modification-only' into 'master'

Shrink cross-database-modification-allowlist for new gitlab_schema

See merge request gitlab-org/gitlab!72576

Refactor ping method of ZenTao client

See merge request gitlab-org/gitlab!72563

Fix nil value in location column in vulnerability_occurrences

See merge request gitlab-org/gitlab!72224

Update docs for Pipeline Security tab

See merge request gitlab-org/gitlab!72156

ReplaceTable helper should be passed a connection

See merge request gitlab-org/gitlab!72402