[10.3] Fix XSS in issue label dropdown

See merge request gitlab/gitlabhq!2253

(cherry picked from commit 363ffabcebd7bb0d1a2d59ca1a75e4eadb4a4360)

ea1fb0ea Fix XSS in issue label dropdown

[10.3] Fix XSS vulnerability in Pipeline job trace

See merge request gitlab/gitlabhq!2258

(cherry picked from commit 44caa80ed9a2514a74a5eeab10ff51849d64851b)

5f86f3ff Fix XSS vulnerability in Pipeline job trace

Merge branch 'security-10-3-do-not-expose-passwords-or-tokens-in-service-integrations-api' into 'security-10-3'

Filter out sensitive fields from the project services API

See merge request gitlab/gitlabhq!2281

(cherry picked from commit 476f2576444632f2a9a61b4cead9c1077f2c81d7)

2bcbbda0 Filter out sensitive fields from the project services API

Prevent RevList failing on non utf8 paths

Closes #41627

See merge request gitlab-org/gitlab-ce!16440

fix readability xterm colors

Closes #37898

See merge request gitlab-org/gitlab-ce!15921

Resolve "postgresql 10 support for GitLab"

Closes #42047

See merge request gitlab-org/gitlab-ce!16471

Update test-and-deploy-ruby-application-to-heroku.md

See merge request gitlab-org/gitlab-ce!16500

Last push widget will show banner for new pushes to previously merged branch

Closes #40818

See merge request gitlab-org/gitlab-ce!15728

Converted from type to "stage" due to depreciation.
Signed-off-by: JJ Asghar <jjasghar@gmail.com>

Add pipeline header padding

See merge request gitlab-org/gitlab-ce!16496

Adjust modal style to new design

See merge request gitlab-org/gitlab-ce!16310

Resolve "N+1 queries with /projects/:project_id/builds API endpoint"

Closes #41957

See merge request gitlab-org/gitlab-ce!16445

Resolve "Wiki uploaded files are missing"

Closes #42031

See merge request gitlab-org/gitlab-ce!16499

List backups avilable for restore

See merge request gitlab-org/gitlab-ce!16465

dispatcher changes for projects:c* views

See merge request gitlab-org/gitlab-ce!16416

Resolve "Icons on forks page are to big"

Closes #42046

See merge request gitlab-org/gitlab-ce!16474

Update auto-deployed prometheus scrape config

Closes #41796

See merge request gitlab-org/gitlab-ce!16306

Resolve "Cannot search with keyword "merge""

Closes #41666

See merge request gitlab-org/gitlab-ce!16462

Refactor of buttons _dropdown partial

Closes #41921

See merge request gitlab-org/gitlab-ce!16486

Fix typo in doc_styleguide.md

See merge request gitlab-org/gitlab-ce!16481

Change user settings column width

See merge request gitlab-org/gitlab-ce!16479

Fix top-area inconsistent capitalization

See merge request gitlab-org/gitlab-ce!16476

Resolve "Enable Project Milestone Deletion via the API"

Closes #41476

See merge request gitlab-org/gitlab-ce!16478

Enables project milestone deletion via DELETE /projects/:id/milestones/:milestone_id

Fix error on changes tab when merge request cannot be created

Closes #41460

See merge request gitlab-org/gitlab-ce!16409

Added imports for milestone dispatcher routes

See merge request gitlab-org/gitlab-ce!16387

Merge branch '42074-rspec-spec-lib-gitlab-background_migration-deserialize_merge_request_diffs_and_commits_spec-rb-spec-services-system_note_service_spec-rb-fails' into 'master'

Resolve "rspec spec/lib/gitlab/background_migration/deserialize_merge_request_diffs_and_commits_spec.rb spec/services/system_note_service_spec.rb fails"

Closes #42074

See merge request gitlab-org/gitlab-ce!16487

We should use this limit everywhere, but especially in project search results,
where we could be highlighting very long single lines. (Typical examples:
minified JavaScript, and JSON data files.)

A file containing /:\d+:/ in its contents would break the search results if
those contents were part of the results, because we were splitting on colons,
which can't work with untrusted input.

Changing to use the null byte as a separator is much safer.