Update CHANGELOG.md for 11.1.5

[ci skip]
author: GitLab Release Tools Bot <robert+release-tools@gitlab.com> 2018-08-27 13:32:21 +0000
committer: Jose Vargas <jvargas@gitlab.com> 2018-08-28 16:36:25 -0500
commit: a7d8a1183ce34ff849ed2b4c2b505c79b64ebafb (patch)
tree: d9c8cd93b4e62eba2b26fc460c999789143a4d1b
parent: 6b1af499f401af82b8f0e04bce31dffd54480ce4 (diff)
download: gitlab-ce-a7d8a1183ce34ff849ed2b4c2b505c79b64ebafb.tar.gz
1 files changed, 13 insertions, 0 deletions
diff --git a/CHANGELOG.md b/CHANGELOG.md
index 078395b110d..ea753515299 100644
--- a/CHANGELOG.md
+++ b/CHANGELOG.md
@@ -263,6 +263,19 @@ entry.
 - Moves help_popover component to a common location.
 
 
+## 11.1.5 (2018-08-27)
+
+### Security (3 changes)
+
+- Fixed persistent XSS rendering/escaping of diff location lines.
+- Adding CSRF protection to Hooks resend action.
+- Block link-local addresses in URLBlocker.
+
+### Fixed (1 change, 1 of them is from the community)
+
+- Sanitize git URL in import errors. (Jamie Schembri)
+
+
 ## 11.1.4 (2018-07-30)
 
 ### Fixed (4 changes, 1 of them is from the community)
author	GitLab Release Tools Bot <robert+release-tools@gitlab.com>	2018-08-27 13:32:21 +0000
committer	Jose Vargas <jvargas@gitlab.com>	2018-08-28 16:36:25 -0500
commit	a7d8a1183ce34ff849ed2b4c2b505c79b64ebafb (patch)
tree	d9c8cd93b4e62eba2b26fc460c999789143a4d1b
parent	6b1af499f401af82b8f0e04bce31dffd54480ce4 (diff)
download	gitlab-ce-a7d8a1183ce34ff849ed2b4c2b505c79b64ebafb.tar.gz