Update CHANGELOG.md for 11.9.2

[ci skip]
author: GitLab Release Tools Bot <robert+release-tools@gitlab.com> 2019-03-26 21:38:49 +0000
committer: GitLab Release Tools Bot <robert+release-tools@gitlab.com> 2019-03-26 21:38:49 +0000
commit: 34a5dac064982ee52135a53aa5d2e341dfb36647 (patch)
tree: 51a0710b1a541eb3ad30c9e0e6013ac882bc593d
parent: 61b2f70fdcbc8dce7504c6599f57e2db703cc5ae (diff)
download: gitlab-ce-34a5dac064982ee52135a53aa5d2e341dfb36647.tar.gz
1 files changed, 14 insertions, 0 deletions
diff --git a/CHANGELOG.md b/CHANGELOG.md
index 3d7e8e10280..4a3228c60ed 100644
--- a/CHANGELOG.md
+++ b/CHANGELOG.md
@@ -2,6 +2,20 @@
 documentation](doc/development/changelog.md) for instructions on adding your own
 entry.
 
+## 11.9.2 (2019-03-26)
+
+### Security (8 changes)
+
+- Disallow guest users from accessing Releases.
+- Fix PDF.js vulnerability.
+- Hide "related branches" when user does not have permission.
+- Fix XSS in resolve conflicts form.
+- Added rake task for removing EXIF data from existing uploads.
+- Return cached languages if they've been detected before.
+- Disallow updating namespace when updating a project.
+- Use UntrustedRegexp for matching refs policy.
+
+
 ## 11.9.1 (2019-03-25)
 
 ### Fixed (7 changes)
author	GitLab Release Tools Bot <robert+release-tools@gitlab.com>	2019-03-26 21:38:49 +0000
committer	GitLab Release Tools Bot <robert+release-tools@gitlab.com>	2019-03-26 21:38:49 +0000
commit	34a5dac064982ee52135a53aa5d2e341dfb36647 (patch)
tree	51a0710b1a541eb3ad30c9e0e6013ac882bc593d
parent	61b2f70fdcbc8dce7504c6599f57e2db703cc5ae (diff)
download	gitlab-ce-34a5dac064982ee52135a53aa5d2e341dfb36647.tar.gz