Previously we whitelisted the entire `style` attribute on `th` and `td`
elements, in order to allow Markdown table alignment to work. But this
opened us up to a potential exploit by allowing a malicious user to
define properties besides `text-align` in the attribute.

We now remove everything except `text-align: (center|left|right)`.

Fix fly-out navigation not showing for active items in collapsed sidebar

See merge request !13353

Unset BUNDLE_GEMFILE when installing Gitaly

See merge request !13378

Fix Profile > Preferences feature specs

See merge request !13382

Fix fly-out width when it has long items

See merge request !13371

Raise encoding confidence threshold to 50

Closes #35098

See merge request !12990

Fix a broken Events API spec

See merge request !13381

Remove repo editor feature flag from RC1

See merge request !13379

Fix the /projects/:id/repository/commits endpoint to handle dots in the ref name…

Closes #15651

See merge request !13370

Fixed activity not loading on project homepage

See merge request !13373

Fix bar chart does not display label at hour 0

Closes #35136

See merge request !13330

Restrict InlineJavaScript for haml_lint to dev and test environment

Closes omnibus-gitlab#2658

See merge request !13364

Expose noteable_iid in Note

See merge request !13265

Fix the /projects/:id/repository/tags endpoint to handle dots in the tag name…

See merge request !13368

Fix the /projects/:id/repository/commits endpoint to handle dots in the ref name when the project full path contains a `/`
Signed-off-by: Rémy Coutable <remy@rymai.me>

Fix the /projects/:id/repository/tags endpoint to handle dots in the tag name when the project full path contains a `/`
Signed-off-by: Rémy Coutable <remy@rymai.me>

Unset the `RUBYOPT` env variable before installing `gitaly-ruby`

Closes #35941 and #35967

See merge request !13313

Add Italian translations of Pipeline Schedules

Closes #35002

See merge request !12981

Fix the iids parameters in the API documentation

See merge request !13340

Add Multi-File Editor Using Monaco/VSCode

Closes #31890

See merge request !12198

* master: (86 commits)
  Show all labels
  33874 confidential issue redesign
  Exclude merge_jid on Import/Export attribute configuration
  Resolve "User dropdown in filtered search does not load avatar on `master`"
  Re-add column locked_at on migration rollback
  Group-level new issue & MR using previously selected project
  [EE Backport] Update log audit event in omniauth_callbacks_controller.rb
  more eagerly bail when the state is prevented
  Move locked_at removal to post-deployment migration
  Add class to other sidebars
  Improve mobile sidebar
  reduce iterations by keeping a count of remaining enablers
  Store & use ConvDev percentages returned by Version app
  Store MergeWorker JID on merge request, and clean up stuck merges
  Backport changes in https://gitlab.com/gitlab-org/gitlab-ee/merge_requests/2551 to CE
  DRY up caching in AbstractReferenceFilter
  Update CHANGELOG
  Add CHANGELOG entry
  Fix html structure Removes test for removed behavior
  Port form back to use form_tag
  ...

Show all labels

See merge request !13303

Resolve "Store MergeWorker JID on merge request, and clean up stuck merges"

Closes #31207

See merge request !13207

33874 confidential issue redesign

See merge request !12801