Update CHANGELOG.md for 12.3.2

[ci skip]

Update CHANGELOG.md for 12.3.2
[ci skip]
da27da93 · GitLab Release Tools Bot · 5707f305 · da27da93
隐藏空白更改
内联并排

Showing with 16 addition and 0 deletion

CHANGELOG.md CHANGELOG.md +16 -0

未找到文件。
--- a/CHANGELOG.md
+++ b/CHANGELOG.md
@@ -2,6 +2,22 @@
 documentation](doc/development/changelog.md) for instructions on adding your own
 entry.
+## 12.3.2
+### Security (10 changes)
+- Fix Gitaly SearchBlobs flag RPC injection.
+- Add a policy check for system notes that may not be visible due to cross references to private items.
+- Display only participants that user has permission to see on milestone page.
+- Do not disclose project milestones on group milestones page when project milestones access is disabled in project settings.
+- Fix new project path being disclosed through unsubscribe link of issue/merge requests.
+- Prevent bypassing email verification using Salesforce.
+- Do not show resource label events referencing not accessible labels.
+- Cancel all running CI jobs triggered by the user who is just blocked.
+- Only render fixed number of mermaid blocks.
+- Prevent GitLab accounts takeover if SAML is configured.
 ## 12.3.1
 ### Fixed (4 changes)