From 35c95685ba2b36bc91e6f0b05f7d968ba27cba42 Mon Sep 17 00:00:00 2001
From: Benedikt Kulmann <benedikt@kulmann.biz>
Date: Thu, 21 Dec 2023 21:24:26 +0000
Subject: [PATCH] Automated changelog update [skip ci]

---
 CHANGELOG.md | 10 ++++++++++
 1 file changed, 10 insertions(+)

diff --git a/CHANGELOG.md b/CHANGELOG.md
index 8f248f54db..3b0b332851 100644
--- a/CHANGELOG.md
+++ b/CHANGELOG.md
@@ -42,6 +42,7 @@ The following sections list the changes for unreleased.
 
 ## Summary
 
+* Bugfix - Removed outdated and unused dependency from idp package: [#7957](https://github.com/owncloud/ocis/issues/7957)
 * Bugfix - Fix search by containing special characters: [#8050](https://github.com/owncloud/ocis/pull/8050)
 * Enhancement - Add RED metrics to the metrics endpoint: [#7994](https://github.com/owncloud/ocis/pull/7994)
 * Enhancement - Bump reva: [#8038](https://github.com/owncloud/ocis/pull/8038)
@@ -49,6 +50,15 @@ The following sections list the changes for unreleased.
 
 ## Details
 
+* Bugfix - Removed outdated and unused dependency from idp package: [#7957](https://github.com/owncloud/ocis/issues/7957)
+
+   We've removed the outdated and apparently unused dependency `cldr` from the
+   `kpop` dependency inside the idp web ui. This resolves a security issue around
+   an oudated `xmldom` package version, originating from said `kpop` library.
+
+   https://github.com/owncloud/ocis/issues/7957
+   https://github.com/owncloud/ocis/pull/7988
+
 * Bugfix - Fix search by containing special characters: [#8050](https://github.com/owncloud/ocis/pull/8050)
 
    As the OData query parser interprets characters like '@' or '-' in a special