FreeBSD: VID-b3cb8f40-4f4c-11f1-80f1-2cf05da270f3 (CVE-2026-2900): Gitlab -- vulnerabilities

Gitlab reports: Cross-site Scripting issue in Analytics dashboard chart rendering impacts GitLab EE Cross-site Scripting issue in global search impacts GitLab CE/EE Cross-site Scripting issue in Duo Agent output rendering impacts GitLab EE Cross-site Scripting issue in Analytics Dashboard impacts GitLab EE Denial of Service issue in CI/CD job update API impacts GitLab CE/EE Denial of Service issue in Duo Workflows API impacts GitLab CE/EE Denial of Service issue in internal API endpoints impacts GitLab CE/EE Improper Authorization issue in GraphQL token scope enforcement impacts GitLab CE/EE Denial of Service issue in Insights Configuration impacts GitLab EE Access Control issue in Issues API impacts GitLab CE/EE Denial of Service issue in direct transfer CSV parser impacts GitLab CE/EE CSRF issue in JiraConnect subscriptions impacts GitLab CE/EE Confused Deputy issue in Jira integration impacts GitLab CE/EE Cross-site Scripting issue in Banzai markdown sanitizer impacts GitLab CE/EE Cross-site Scripting issue in achievement email notifications impacts GitLab CE/EE Access Control issue in Helm package upload impacts GitLab CE/EE Improper Access Control issue in NuGet Symbol Server impacts GitLab CE/EE Improper Access Control issue in Container Registry protected tags impacts GitLab CE/EE Missing Authorization issue in group user search impacts GitLab CE/EE Improper Access Control issue in code owner approval rules impacts GitLab EE Access Control issue in PyPI Package Protection Rules impacts GitLab CE/EE Improper Access Control issue in issue links API impacts GitLab CE/EE Server-Side Request Forgery issue in virtual registry redirect handler impacts GitLab EE Access Control issue in GraphQL approval rule mutations impacts GitLab EE Missing Authorization issue in Security Policy Project Reassignment impacts GitLab EE