Create changelog for recovery codes

[jhutchings1]

Summary

Adds a changelog for our new recovery code reminders

Screenshots (optional)

Documentation checklist

• Is there a changelog entry (guidelines)? If you don't add one for something awesome and new (however small) — how will our customers find out? Changelogs are automatically posted to RSS feeds, the Discord, and X.
• The documentation style guide has been adhered to.
• If a larger change - such as adding a new page- an issue has been opened in relation to any incorrect or out of date information that this PR fixes.
• Files which have changed name or location have been allocated redirects.

[github-actions]

This pull request requires reviews from CODEOWNERS as it changes files that match the following patterns:

Pattern	Owners
/src/content/changelog/	@cloudflare/pm-changelogs, @cloudflare/pcx-technical-writing

[github-actions]

Preview URL: https://2e649ba8.preview.developers.cloudflare.com
Preview Branch URL: https://jhutchings1-patch-1.preview.developers.cloudflare.com

Files with changes (up to 15)

Original Link	Updated Link
https://developers.cloudflare.com/changelog/2025-10-07-recovery-codes/	https://jhutchings1-patch-1.preview.developers.cloudflare.com/changelog/2025-10-07-recovery-codes/

[patriciasantaana]

Suggested change

	* Use a unique password for every website, including Cloudflare, and store it in a password manager like 1Password or Keeper. These services are cross-platform and simplify the process of managing secure passwords.
	* Use 2FA to make it harder for an attacker to get into your account in the event your password is leaked
	* Store your backup codes securely. A password manager is the best place since it keeps the backup codes encrypted, but you can also print them and put them somewhere safe in your home.
	* If you use an app to manage your 2FA keys, enable cloud backup, so that you don't lose your keys in the event you lose your phone.
	* If you use a custom email domain to sign in, [configure SSO](https://developers.cloudflare.com/cloudflare-one/applications/configure-apps/dash-sso-apps/).
	* If you use a public email domain like Gmail or Hotmail, you can also use social login with Apple, GitHub, or Google to sign in.
	* If you manage a Cloudflare account for work:
	* Have at least two administrators in case one of them unexpectedly leaves your company
	* Use SCIM to automate permissions management for members in your Cloudflare account
	- Use a unique password for every website, including Cloudflare, and store it in a password manager like 1Password or Keeper. These services are cross-platform and simplify the process of managing secure passwords.
	- Use 2FA to make it harder for an attacker to get into your account in the event your password is leaked.
	- Store your backup codes securely. A password manager is the best place since it keeps the backup codes encrypted, but you can also print them and put them somewhere safe in your home.
	- If you use an application to manage your 2FA keys, enable cloud backup, so that you do not lose your keys in the event you lose your phone.
	- If you use a custom email domain to sign in, [configure SSO](https://developers.cloudflare.com/cloudflare-one/applications/configure-apps/dash-sso-apps/).
	- If you use a public email domain like Gmail or Hotmail, you can also use social login with Apple, GitHub, or Google to sign in.
	- If you manage a Cloudflare account for work:
	- Have at least two administrators in case one of them unexpectedly leaves your company.
	- Use SCIM to automate permissions management for members in your Cloudflare account.