[merge-train skip]

[ci skip]

[ci skip]

Update ruby-saml and omniauth-saml

See merge request https://gitlab.com/gitlab-org/gitlab/-/merge_requests/166059



Merged-by: Stan Hu <stanhu@gmail.com>
Approved-by: Andrew Evans <aevans@gitlab.com>
Approved-by: Greg Alfaro <galfaro@gitlab.com>
Approved-by: Stan Hu <stanhu@gmail.com>
Co-authored-by: Drew Blessing <drew@gitlab.com>

Upgrade bundler for the GitLab Backup CLI gem

See merge request https://gitlab.com/gitlab-org/gitlab/-/merge_requests/166063



Merged-by: Stan Hu <stanhu@gmail.com>
Approved-by: Drew Blessing <drew@gitlab.com>
Approved-by: Stan Hu <stanhu@gmail.com>
Approved-by: Jennifer Li <jli@gitlab.com>
Co-authored-by: Gabriel Mazetto <gabriel@gitlab.com>

[merge-train skip]

[ci skip]

[ci skip]

Revert "Merge branch 'security-psk-fix-external-wiki-integration-dos-17-3' into '17-3-stable-ee'"

See merge request https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/4453



Merged-by: Mayra Cabrera <mcabrera@gitlab.com>
Approved-by: Mayra Cabrera <mcabrera@gitlab.com>
Co-authored-by: John T Skarbek <jtslear@gmail.com>

Merge branch 'revert-89504a1f' into '17-3-stable-ee'

See merge request gitlab-org/security/gitlab!4453

Changelog: security

Improve OpenSSL 3 upgrading warning notes

See merge request https://gitlab.com/gitlab-org/gitlab/-/merge_requests/165585



Merged-by: Stan Hu <stanhu@gmail.com>
Approved-by: Achilleas Pipinellis <axil@gitlab.com>
Approved-by: Eduardo Sanz García <esanz-garcia@gitlab.com>

Fix the vulnerability in the glm_source parameter

See merge request https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/4436



Merged-by: GitLab Release Tools Bot <delivery-team+release-tools@gitlab.com>
Approved-by: Gabriel Mazetto <gabriel@gitlab.com>
Co-authored-by: Doug Stull <dstull@gitlab.com>

Merge branch 'cherry-pick-98bf5baa-3' into '17-3-stable-ee'

See merge request gitlab-org/security/gitlab!4436

Changelog: security

Improve GraphQL log security

See merge request https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/4400



Merged-by: GitLab Release Tools Bot <delivery-team+release-tools@gitlab.com>
Approved-by: Dzmitry (Dima) Meshcharakou <12459192-dmeshcharakou@users.noreply.gitlab.com>
Reviewed-by: Dzmitry (Dima) Meshcharakou <12459192-dmeshcharakou@users.noreply.gitlab.com>
Co-authored-by: Radamanthus Batnag <rbatnag@gitlab.com>

Merge branch 'security-1164-confidential-issue-17-3' into '17-3-stable-ee'

See merge request gitlab-org/security/gitlab!4400

Changelog: security

Add permissions check to project creations from a project template

See merge request https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/4443



Merged-by: GitLab Release Tools Bot <delivery-team+release-tools@gitlab.com>
Approved-by: Gavin Hinfey <ghinfey@gitlab.com>
Co-authored-by: Fred Reinink <freinink@gitlab.com>

Merge branch 'security-custom-templates-source-code-disclosure-17-3' into '17-3-stable-ee'

See merge request gitlab-org/security/gitlab!4443

Changelog: security

Fix credentials disclosure in mirroring failure

See merge request https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/4446



Merged-by: GitLab Release Tools Bot <delivery-team+release-tools@gitlab.com>
Approved-by: Vasilii Iakliushin <viakliushin@gitlab.com>
Co-authored-by: Olaoluwa Oluro <olaoluro@gitlab.com>

Merge branch 'security-scp-url-sanitizer-17-3' into '17-3-stable-ee'

See merge request gitlab-org/security/gitlab!4446

Changelog: security

Redirect url in the link validated for being external

See merge request https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/4440



Merged-by: GitLab Release Tools Bot <delivery-team+release-tools@gitlab.com>
Approved-by: Drew Blessing <drew@gitlab.com>
Co-authored-by: smriti <sgarg@gitlab.com>

Merge branch 'security-sg-redirect-check-for-releases-17-3' into '17-3-stable-ee'

See merge request gitlab-org/security/gitlab!4440

Changelog: security

[17.3] Update edit permissions for DAST profiles

See merge request https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/4372



Merged-by: GitLab Release Tools Bot <delivery-team+release-tools@gitlab.com>
Approved-by: Alejandro Rodríguez <alejandro@gitlab.com>
Co-authored-by: Arpit Gogia <12347103-arpitgogia@users.noreply.gitlab.com>

Merge branch 'security-451014-dast-profile-permissions-17-3' into '17-3-stable-ee'

See merge request gitlab-org/security/gitlab!4372

Changelog: security

Commit information visible through release atom endpoint for guest users

See merge request https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/4437



Merged-by: GitLab Release Tools Bot <delivery-team+release-tools@gitlab.com>
Approved-by: Tomas Bulva <tbulva@gitlab.com>
Approved-by: Kevin Morrison <kmorrison@gitlab.com>
Co-authored-by: Anna Vovchenko <avovchenko@gitlab.com>

Merge branch 'security-469367-commit-info-visible-though-atom-17-3' into '17-3-stable-ee'

See merge request gitlab-org/security/gitlab!4437

Changelog: security

Execute environment stop actions as the owner of the action

See merge request https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/4404



Merged-by: GitLab Release Tools Bot <delivery-team+release-tools@gitlab.com>
Approved-by: Fabio Pitino <fpitino@gitlab.com>
Co-authored-by: Tiger <twatson@gitlab.com>

Merge branch 'security-run-stop-actions-as-job-owner-17-3' into '17-3-stable-ee'

See merge request gitlab-org/security/gitlab!4404

Changelog: security

Prevent code injection in Product Analytics funnels YAML

See merge request https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/4431



Merged-by: GitLab Release Tools Bot <delivery-team+release-tools@gitlab.com>
Approved-by: Halil Coban <hcoban@gitlab.com>
Co-authored-by: Robert Hunt <rhunt@gitlab.com>

Merge branch 'security-prevent-code-injection-in-pa-funnels-17-3' into '17-3-stable-ee'

See merge request gitlab-org/security/gitlab!4431

Changelog: security

Prevent users with admin_group_member custom ab. to manage custom roles

See merge request https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/4425



Merged-by: GitLab Release Tools Bot <delivery-team+release-tools@gitlab.com>
Approved-by: charlie ablett <cablett@gitlab.com>
Co-authored-by: Jarka Košanová <jarka@gitlab.com>

Merge branch 'security-fix-cr-edit-17-3' into '17-3-stable-ee'

See merge request gitlab-org/security/gitlab!4425

Changelog: security

Fixed frontend regex to parse URI

See merge request https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/4419



Merged-by: GitLab Release Tools Bot <delivery-team+release-tools@gitlab.com>
Approved-by: Drew Blessing <drew@gitlab.com>
Co-authored-by: smriti <sgarg@gitlab.com>

Merge branch 'security-sg-fix-frontend-uri-parse-regex-17-3' into '17-3-stable-ee'

See merge request gitlab-org/security/gitlab!4419

Changelog: security

Merge branch 'security-dblessing_identities_controller_use_session_cookie-17-3' into '17-3-stable-ee'

Use session instead of params for identity linking

See merge request https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/4369



Merged-by: GitLab Release Tools Bot <delivery-team+release-tools@gitlab.com>
Approved-by: Andrew Evans <aevans@gitlab.com>
Co-authored-by: Drew Blessing <drew@gitlab.com>

Merge branch 'security-dblessing_identities_controller_use_session_cookie-17-3' into '17-3-stable-ee'

See merge request gitlab-org/security/gitlab!4369

Changelog: security

Fix external wiki integration DoS by changing request to HEAD

See merge request https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/4381



Merged-by: GitLab Release Tools Bot <delivery-team+release-tools@gitlab.com>
Approved-by: Terri Chu <tchu@gitlab.com>
Co-authored-by: Piotr Skorupa <pskorupa@gitlab.com>

Merge branch 'security-psk-fix-external-wiki-integration-dos-17-3' into '17-3-stable-ee'

See merge request gitlab-org/security/gitlab!4381

Changelog: security