Merge branch 'branch-name-escape' into 'security'

Fix XSS in branches dropdown See merge request !2093
author: Robert Speicher <robert@gitlab.com> 2017-05-03 14:28:46 +0000
committer: Lin Jen-Shin <godfat@godfat.org> 2017-05-04 23:29:13 +0800
commit: b74683eef78c654f5bbce3f50a06232e5b97c94b (patch)
tree: ae36c750db062e465b8fad60035315920be1d047 /changelogs
parent: 28b4d18fb828e61c613163eb11b2c4aaa2eadb01 (diff)
download: gitlab-ce-b74683eef78c654f5bbce3f50a06232e5b97c94b.tar.gz
1 files changed, 4 insertions, 0 deletions
diff --git a/changelogs/unreleased/branch-name-escape.yml b/changelogs/unreleased/branch-name-escape.yml
new file mode 100644
index 00000000000..bf46235fd79
--- /dev/null
+++ b/changelogs/unreleased/branch-name-escape.yml
@@ -0,0 +1,4 @@
+---
+title: Fixed branches dropdown rendering branch names as HTML
+merge_request:
+author:
author	Robert Speicher <robert@gitlab.com>	2017-05-03 14:28:46 +0000
committer	Lin Jen-Shin <godfat@godfat.org>	2017-05-04 23:29:13 +0800
commit	b74683eef78c654f5bbce3f50a06232e5b97c94b (patch)
tree	ae36c750db062e465b8fad60035315920be1d047 /changelogs
parent	28b4d18fb828e61c613163eb11b2c4aaa2eadb01 (diff)
download	gitlab-ce-b74683eef78c654f5bbce3f50a06232e5b97c94b.tar.gz