It was previously possible to link a GCP account to another
user's GitLab account by having them visit the callback URL,
as there was no check that they were the initiator of the
request.

We now reject the callback unless the state parameter
matches the one added to the initiating user's session.

Merge branch '57604-checking-a-box-in-an-issue-description-consistently-throws-an-error-on-11-8-0-rc2' into 'master'

Checking a box in an issue description consistently throws an error

Closes #57604

See merge request gitlab-org/gitlab-ce!25174

Convert noteable_note_spec.js to Vue test utils

See merge request gitlab-org/gitlab-ce!24983

(cherry picked from commit 861f93e6)

Merge branch '57426-review-apps-some-merge-related-tests-fail-in-review-qa-jobs-but-not-in-package-and-qa' into 'master'

Fix a Ruby 2.4 incompatibility in Ci::CreatePipelineService

Closes #57426

See merge request gitlab-org/gitlab-ce!25168

Signed-off-by: Rémy Coutable <remy@rymai.me>

Fix overlapping empty-header logo

Closes #56347

See merge request gitlab-org/gitlab-ce!24868

Notable changes proposed by @pslaughter

Fix broken links on help page

Closes #57554

See merge request gitlab-org/gitlab-ce!25120

Log queue duration in production_json.log

Closes #57420

See merge request gitlab-org/gitlab-ce!25075

Change unicode for non-standard spaces

See merge request gitlab-org/gitlab-ce!24795

Remove fast_destroy_uploads feature flag

Closes #54937

See merge request gitlab-org/gitlab-ce!24930

Transforming Gfm also on paste so it works also in FF

Closes #57561

See merge request gitlab-org/gitlab-ce!25146

`queue_duration` is a useful metric that is currently in api_json.log
but not in production_json.log. We should add it because it tells us how
long the request sat in Workhorse before Unicorn processed it. Having
this field enables the support team to better troubleshoot when delays
began to happen.

Usage ping for Group overview default user preference

See merge request gitlab-org/gitlab-ce!24980

Fast destroy of uploads was successfully enabled and test.

Add flex styles to board list only if board list is expanded

Closes #57551

See merge request gitlab-org/gitlab-ce!25113

Remove BATCH_SIZE from WikiFileFinder

Closes #57223

See merge request gitlab-org/gitlab-ce!24933

Replace dots with an underscore when creating an alias for the recursive CTE

See merge request gitlab-org/gitlab-ce!25112

Fix the border style of CONTRIBUTING button when it exists

Closes #57564

See merge request gitlab-org/gitlab-ce!25124

Docs: Clean up issues functionalities doc

See merge request gitlab-org/gitlab-ce!24931

Docs: Misc small fixes to docs

See merge request gitlab-org/gitlab-ce!24952

Docs: Realign more CE docs that diverged from EE unnecessarily (second MR)

See merge request gitlab-org/gitlab-ce!24948

Docs: Realign several CE docs that diverged from EE unnecessarily

See merge request gitlab-org/gitlab-ce!24849

Added example for get file archive

See merge request gitlab-org/gitlab-ce!23432

Fix access to pages domain settings

Closes #54850

See merge request gitlab-org/gitlab-ce!24926

Update gitlab-svg to 1.52

See merge request gitlab-org/gitlab-ce!25145

Update the regular expression in the help controller used to prefix relative
links on the help page with /help/. As suggested by @rymai, the look-ahead
pattern to detect external links is simplified from `[a-zA-Z0-9.+-]` to `\w`.

Resolve "Tool Tip Hides Menu Item"

Closes #55209

See merge request gitlab-org/gitlab-ce!24285

Adding info for the location of cicd timeout setting per project

See merge request gitlab-org/gitlab-ce!25136

Docs: add description on how to retrieve artifacts when authentication is required

See merge request gitlab-org/gitlab-ce!23197