Zope.publisher

===================

- Ensure that ``BaseRequest.traverse`` does not call traversal hooks on
elements previously traversed but wrapped in a security proxy.

===================

- Revert change done in 3.6.2, removing the ``zope.authentication``
dependency again. Move the ``BasicAuthAdapter`` and ``FTPAuth`` adapters
to the new ``zope.login`` package.

===================

- Move ``EndRequestEvent`` and ``IEndRequestEvent`` here from
``zope.app.publication``.

===================

- Declare minimum dependency on ``zope.contenttype`` 3.5 (omitted in 3.10).

===================

- Move the implementation of ``zope.publisher.contenttype`` to
``zope.contenttype.parse``, leaving BBB imports and moving tests along.
``zope.contenttype`` is a new but light-weight dependency of this package.

- Support Python 2.6 by keeping QUERY_STRING out of request.form if
the method is a POST. The original QUERY_STRING is still available if
further processing is needed.

- Better support the zcml ``defaultSkin`` directive's behavior (registering
an interface as a default skin) in the ``setDefaultSkin`` function.

==================

- Fix the check for untrusted redirects introduced in 3.9.0 so it works with
virtual hosting.