Wagtail

~~~~~~~~~~~~~~~~~~

* Fix: Rectify previous fix for TableBlock becoming uneditable after save (Sage Abdullah)
* Fix: Ensure that copying page correctly picks up the latest revision (Matt Westcott)
* Fix: Adjust collection field alignment in multi-upload forms (LB (Ben) Johnston)
* Fix: Prevent lowercase conversions of IndexView column headers (Virag Jain)
* Docs: Update documentation for `log_action` parameter on `RevisionMixin.save_revision` (Christer Jensen)

~~~~~~~~~~~~~~~~~~

* Fix: Prevent TableBlock from becoming uneditable after save (Sage Abdullah)

~~~~~~~~~~~~~~~~~~

* Fix: CVE-2023-28836 - Stored XSS attack via ModelAdmin views (Thibaud Colas)
* Fix: CVE-2023-28837 - Denial-of-service via memory exhaustion when uploading large files (Jake Howard)
* Fix: Fix radio and checkbox elements shrinking when using a long label (Sage Abdullah)
* Fix: Fix select elements expanding beyond their container when using a long option label (Sage Abdullah)
* Fix: Fix timezone handling of `TemplateResponse`s for users with a custom timezone (Stefan Hammer, Sage Abdullah)
* Fix: Ensure TableBlock initialization correctly runs after load and its width is aligned with the parent panel (Dan Braghis)
* Fix: Ensure that the JavaScript media files are loaded by default in Snippet index listings for date fields (Sage Abdullah)
* Fix: Fix server-side caching of the icons sprite (Thibaud Colas)
* Fix: Always show Add buttons, guide lines, Move up/down, Duplicate, Delete; in StreamField and Inline Panel (Thibaud Colas)
* Fix: Ensure datetimepicker widget overlay shows over modals & drop-downs (LB (Ben) Johnston)
* Maintenance: Render large image renditions to disk (Jake Howard)

~~~~~~~~~~~~~~~~~~

* Fix: Add right-to-left (RTL) support for the following form components: Switch, Minimap, live preview (Thibaud Colas)
* Fix: Improve right-to-left (RTL) positioning for the following components: Page explorer, Sidebar sub-menu, rich text tooltips, rich text toolbar trigger, editor section headers (Thibaud Colas)
* Fix: Ensure links within help blocks meet color contrast guidelines for accessibility (Theresa Okoro)
* Fix: Support creating `StructValue` copies (Tidiane Dia)
* Fix: Fix "Edit this page" missing from userbar (Satvik Vashisht)
* Fix: Prevent audit log report from failing on missing models (Andy Chosak)
* Fix: Add missing log information for `wagtail.schedule.cancel` (Stefan Hammer)
* Fix: Fix timezone activation leaking into subsequent requests in `require_admin_access()` (Stefan Hammer)
* Fix: Prevent matches from unrelated models from leaking into SQLite FTS searches (Matt Westcott)
* Docs: Clarify `ClusterableModel` requirements for using relations with `RevisionMixin`-enabled models (Sage Abdullah)
* Maintenance: Update Algolia DocSearch to use new application and correct versioning setup (Thibaud Colas)

~~~~~~~~~~~~~~~~~~

* Fix: Make "Cancel scheduled publish" button correctly redirect back to the edit view (Sage Abdullah)
* Fix: Prevent crash when reverting revisions on a snippet with `PreviewableMixin` applied (Sage Abdullah)
* Fix: Use consistent heading styles on top-level fields in the page editor (Sage Abdullah)
* Fix: Allow button labels to wrap onto two lines in dropdown buttons (Coen van der Kamp)
* Fix: Move DateField, DateTimeField, TimeField comment buttons to be right next to the fields (Theresa Okoro)
* Fix: Support text resizing in workflow steps cards (Ivy Jeptoo)
* Fix: Use the correct padding for autocomplete block picker (Umar Farouk Yunusa)
* Fix: Fix horizontal positioning of rich text inline toolbar (Thibaud Colas)
* Fix: Close the userbar when clicking its toggle (Albina Starykova)
* Fix: Do not show bulk actions checkbox in page type usage view (Sage Abdullah)
* Fix: Prevent account name from overflowing the sidebar (Aman Pandey)
* Fix: Ensure edit form is displayed as unlocked immediately after canceling a workflow (Sage Abdullah)
* Fix: Prevent `latest_revision` pointer from being copied over when copying translatable snippets for translation (Sage Abdullah)
* Docs: Document potential data loss for BaseLogEntry migration in 3.0 (Sage Abdullah)
* Docs: Add documentation for the reference index mechanism (Daniel Kirkham)

~~~~~~~~~~~~~~~~~~

* Fix: Fix issue where lock/unlock buttons would not work on the Dashboard (home) page or the page index listing via the status sidebar (Stefan Hammer)
* Fix: Fix disabled style on StreamField add button (Matt Westcott)
* Fix: Ensure models are fully loaded before registering snippets, to avoid circular import issues (Matt Westcott)
* Fix: Prevent fields without a `verbose_name` property from breaking usage report views (Matt Westcott)
* Fix: Exclude tags from the reference index (Matt Westcott)
* Fix: Fix errors in handling generic foreign keys when populating the reference index (Matt Westcott)
* Fix: Prevent error in handling null ParentalKeys when populating the reference index (Matt Westcott)
* Fix: Make sure minimap error indicators follow the minimap scrolling (Thibaud Colas)
* Fix: Ensure background HTTP request to clear stale preview data correctly respects the `CSRF_HEADER_NAME` setting (Sage Abdullah)
* Fix: Prevent error on aging pages report when "Last published by" user has been deleted (Joshua Munn)