Bump wagtail from 4.2.4 to 5.0.5 in /deployment/docker

[dependabot]

Bumps wagtail from 4.2.4 to 5.0.5.

Release notes

Sourced from wagtail's releases.

5.0.5

• Fix: CVE-2023-45809: Disclosure of user names via admin bulk action views (Matt Westcott)

5.0.4

• Maintenance: Relax Willow / Pillow dependency to allow use of current Pillow versions with security fixes (Dan Braghis)

5.0.3

• Fix: Avoid use of ignore_conflicts when creating extra permissions for snippets, for SQL Server compatibility (Sage Abdullah)
• Fix: Ensure sequence on wagtailsearchpromotions_query table is correctly set after migrating data (Jake Howard)
• Fix: Update Pillow dependency to 9.1.0 (Daniel Kirkham)

5.0.2

• Added TitleFieldPanel to support title / slug field synchronisation (LB (Ben) Johnston)
• Fix: Prevent JS error when reverting the spinner on a submit button after a validation error (LB (Ben) Johnston)
• Fix: Prevent crash when comparing page revisions that include MultipleChooserPanel (Matt Westcott)
• Fix: Ensure that title and slug continue syncing after entering non-URL-safe characters (LB (Ben) Johnston)
• Fix: Ensure that title and slug are synced on keypress, not just on blur (LB (Ben) Johnston)
• Fix: Add a more visible active state for side panel toggle buttons (Thibaud Colas)
• Fix: Use custom dark theme colors for revision comparisons (Thibaud Colas)

5.0.1

• Fix: Rectify previous fix for TableBlock becoming uneditable after save (Sage Abdullah)
• Fix: Ensure that copying page correctly picks up the latest revision (Matt Westcott)
• Fix: Ensure comment buttons always respect WAGTAILADMIN_COMMENTS_ENABLED (Thibaud Colas)
• Fix: Fix error when deleting a single snippet through the bulk actions interface (Sage Abdullah)
• Fix: Pass the correct for_update value for get_form_class in SnippetViewSet edit views (Sage Abdullah)
• Fix: Move comment notifications toggle to the comments side panel (Sage Abdullah)
• Fix: Remove comment button on InlinePanel fields (Sage Abdullah)
• Fix: Fix missing link to UsageView from EditView for snippets (Christer Jensen)
• Fix: Prevent lowercase conversions of IndexView column headers (Virag Jain)
• Fix: Fix various colour issues in dark mode (Thibaud Colas)
• Docs: Update documentation for log_action parameter on RevisionMixin.save_revision (Christer Jensen)

5.0

• Added support for Django 4.2
• Object usage information on deleting objects (Sage Abdullah)
• Support for SVG images (Joshua Munn, with sponsorship from YouGov)
• Custom validation support for StreamField (Matt Westcott)
• Add WAGTAILIMAGES_EXTENSIONS setting to restrict image uploads to specific file types (Aman Pandey, Ananjan-R)
• Update user list column level to Access level to be easier to understand (Vallabh Tiwari)
• Migrate .button-longrunning behaviour to a Stimulus controller with support for custom label element & duration (Loveth Omokaro)
• Implement new simplified userbar designs (Albina Starykova)
• Add more Axe rules to the accessibility checker (Albina Starykova)
• Sort accessibility checker results by position on the page (Albina Starykova)
• Highlight elements with errors in accessibility checker (Albina Starykova)
• Add usage view for pages (Sage Abdullah)
• Copy page form now updates the slug field dynamically with a slugified value on blur (Loveth Omokaro)
• Ensure selected collection is kept when navigating from documents or images listings to add multiple views & upon upload (Aman Pandey, Bojan Mihelac)
• Keep applied filters when downloading form submissions (Suyash Srivastava)
• Messages added dynamically via JavaScript now have an icon to be consistent with those supplied in the page's HTML (Aman Pandey)

... (truncated)

Changelog

Sourced from wagtail's changelog.

5.0.5 (19.10.2023)

* Fix: CVE-2023-45809: Disclosure of user names via admin bulk action views (Matt Westcott)
5.0.4 (04.10.2023)

• Maintenance: Relax Willow / Pillow dependency to allow use of current Pillow versions with security fixes (Dan Braghis)

5.0.3 (25.09.2023)

 * Fix: Avoid use of `ignore_conflicts` when creating extra permissions for snippets, for SQL Server compatibility (Sage Abdullah)
 * Fix: Ensure sequence on `wagtailsearchpromotions_query` table is correctly set after migrating data (Jake Howard)
 * Fix: Update Pillow dependency to 9.1.0 (Daniel Kirkham)
5.0.2 (21.06.2023)

• Added TitleFieldPanel to support title / slug field synchronisation (LB (Ben) Johnston)
• Fix: Prevent JS error when reverting the spinner on a submit button after a validation error (LB (Ben) Johnston)
• Fix: Prevent crash when comparing page revisions that include MultipleChooserPanel (Matt Westcott)
• Fix: Ensure that title and slug continue syncing after entering non-URL-safe characters (LB (Ben) Johnston)
• Fix: Ensure that title and slug are synced on keypress, not just on blur (LB (Ben) Johnston)
• Fix: Add a more visible active state for side panel toggle buttons (Thibaud Colas)
• Fix: Use custom dark theme colors for revision comparisons (Thibaud Colas)

5.0.1 (25.05.2023)

 * Fix: Rectify previous fix for TableBlock becoming uneditable after save (Sage Abdullah)
 * Fix: Ensure that copying page correctly picks up the latest revision (Matt Westcott)
 * Fix: Ensure comment buttons always respect `WAGTAILADMIN_COMMENTS_ENABLED` (Thibaud Colas)
 * Fix: Fix error when deleting a single snippet through the bulk actions interface (Sage Abdullah)
 * Fix: Pass the correct `for_update` value for `get_form_class` in `SnippetViewSet` edit views (Sage Abdullah)
 * Fix: Move comment notifications toggle to the comments side panel (Sage Abdullah)
 * Fix: Remove comment button on InlinePanel fields (Sage Abdullah)
 * Fix: Fix missing link to `UsageView` from `EditView` for snippets (Christer Jensen)
 * Fix: Prevent lowercase conversions of IndexView column headers (Virag Jain)
 * Fix: Fix various colour issues in dark mode (Thibaud Colas)
 * Docs: Update documentation for `log_action` parameter on `RevisionMixin.save_revision` (Christer Jensen)
5.0 (02.05.2023)
</tr></table> 
</code></pre>
</blockquote>
<p>... (truncated)</p>
</details>
<details>
<summary>Commits</summary>
<ul>

<li><a href="https://github.com/wagtail/wagtail/commit/429dec0f1e7ca2b59354564a84b21d84cf9a2d5a&quot;&gt;&lt;code&gt;429dec0&lt;/code&gt;&lt;/a> Add 5.0.5 release note page</li>

<li><a href="https://github.com/wagtail/wagtail/commit/664f2e914aefedc8073dc6e85bac0761efef9017&quot;&gt;&lt;code&gt;664f2e9&lt;/code&gt;&lt;/a> Version bump to 5.0.5</li>

<li><a href="https://github.com/wagtail/wagtail/commit/8cae3f09c2b14ea757667b0e049f6b60bbe40ba8&quot;&gt;&lt;code&gt;8cae3f0&lt;/code&gt;&lt;/a> Release note for CVE-2023-45809 in 5.0.5</li>

<li><a href="https://github.com/wagtail/wagtail/commit/c94056432827e217dc704c5965728be46853b90b&quot;&gt;&lt;code&gt;c940564&lt;/code&gt;&lt;/a> Release note for CVE-2023-45809 in 4.1.9</li>

<li><a href="https://github.com/wagtail/wagtail/commit/2231f462c75dfe84307fb40577e8c2109a23b27e&quot;&gt;&lt;code&gt;2231f46&lt;/code&gt;&lt;/a> Redirect away from user bulk actions when user has no permissions on users</li>

<li><a href="https://github.com/wagtail/wagtail/commit/739588b4282ad982fe41b3549354551e7122be51&quot;&gt;&lt;code&gt;739588b&lt;/code&gt;&lt;/a> Fix changelog for django-filter upgrade in 4.0</li>

<li><a href="https://github.com/wagtail/wagtail/commit/79b7721cd1afabdf8ea69c9e5fa78958a6adb108&quot;&gt;&lt;code&gt;79b7721&lt;/code&gt;&lt;/a> Version bump to 5.0.4</li>

<li><a href="https://github.com/wagtail/wagtail/commit/bb225ffb24ecf032fb51c4a33f0b68d5e2460f1c&quot;&gt;&lt;code&gt;bb225ff&lt;/code&gt;&lt;/a> Release note for <a href="https://redirect.github.com/wagtail/wagtail/issues/10989&quot;&gt;#10989&lt;/a> in 5.0.4</li>

<li><a href="https://github.com/wagtail/wagtail/commit/da2cf662a74ddbc303bb1bcac0fc96279037f760&quot;&gt;&lt;code&gt;da2cf66&lt;/code&gt;&lt;/a> Update RTD configuration file to v2</li>

<li><a href="https://github.com/wagtail/wagtail/commit/e1e42722d60231d48daa504715b11ed100068e23&quot;&gt;&lt;code&gt;e1e4272&lt;/code&gt;&lt;/a> Update Pillow/Willow dependencies to allow Pillow 10.0.1</li>

<li>Additional commits viewable in <a href="https://github.com/wagtail/wagtail/compare/v4.2.4...v5.0.5&quot;&gt;compare view</a></li>

</ul>

</details>
<br />



You can trigger a rebase of this PR by commenting @dependabot rebase.


Dependabot commands and options


You can trigger Dependabot actions by commenting on this PR:

@dependabot rebase will rebase this PR
@dependabot recreate will recreate this PR, overwriting any edits that have been made to it
@dependabot merge will merge this PR after your CI passes on it
@dependabot squash and merge will squash and merge this PR after your CI passes on it
@dependabot cancel merge will cancel a previously requested merge and block automerging
@dependabot reopen will reopen this PR if it is closed
@dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
@dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
@dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
@dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
@dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

You can disable automated security fix PRs for this repo from the Security Alerts page.



Note

Automatic rebases have been disabled on this pull request as it has been open for over 30 days.