* SECURITY * Upgrade xz to v0.5.15 (#35385) * BUGFIXES * Fix a compare page 404 bug when the pull request disabled (#35441) (#35453) * Fix bug when issue disabled, pull request number in the commit message cannot be redirected (#35420) (#35442) * Add author.name field to Swift Package Registry API response (#35410) (#35431) * Remove usernames when empty in discord webhook (#35412) (#35417) * Allow foreachref parser to grow its buffer (#35365) (#35376) * Allow deleting comment with content via API like web did (#35346) (#35354) * Fix atom/rss mixed error (#35345) (#35347) * Fix review request webhook bug (#35339) * Remove duplicate html IDs (#35210) (#35325) * Fix LFS range size header response (#35277) (#35293) * Fix GitHub release assets URL validation (#35287) (#35290) * Fix token lifetime, closes #35230 (#35271) (#35281) * Fix push commits comments when changing the pull request target branch (#35386) (#35443)