Add release notes for 2.7.0 (#2690) (#2695)

* Add release notes for 2.7.0

Signed-off-by: Ryan Liang <jiallian@amazon.com>
(cherry picked from commit d168c1a)

Author: opensearch-trigger-bot[bot]

release-notes/opensearch-security.release-notes-2.6.0.0.md

@@ -7,6 +7,7 @@ Compatible with OpenSearch 2.6.0
 * Add actions cluster:admin/component_template/* to cluster_manage_index_templates ([#2409](https://github.com/opensearch-project/security/pull/2409))
 * Publish snapshots to maven ([#2438](https://github.com/opensearch-project/security/pull/2438))
 * Integrate k-NN functionality with security plugin ([#2274](https://github.com/opensearch-project/security/pull/2274))
+* Flatten response times ([#2471](https://github.com/opensearch-project/security/pull/2471))
 
 ### Maintenance
 

release-notes/opensearch-security.release-notes-2.7.0.0.md

@@ -0,0 +1,43 @@
+## 2023-04-25 Version 2.7.0.0
+
+Compatible with OpenSearch 2.7.0
+
+### Features
+
+* Dynamic tenancy configurations ([#2607](https://github.com/opensearch-project/security/pull/2607))
+
+### Bug Fixes
+
+* Support multitenancy for the anonymous user ([#2459](https://github.com/opensearch-project/security/pull/2459))
+* Fix error message when system index is blocked ([#2525](https://github.com/opensearch-project/security/pull/2525))
+* Fix of OpenSSLTest is not using the OpenSSL Provider ([#2301](https://github.com/opensearch-project/security/pull/2301))
+* Add chmod 0600 to install_demo_configuration bash script ([#2550](https://github.com/opensearch-project/security/pull/2550))
+* Fix SLF4J: Failed to load class "org.slf4j.impl.StaticLoggerBinder" ([#2564](https://github.com/opensearch-project/security/pull/2564))
+* Fix lost privileges during auto initializing of the index ([#2498](https://github.com/opensearch-project/security/pull/2498))
+* Fix NPE and add additional graceful error handling ([#2687](https://github.com/opensearch-project/security/pull/2687))
+
+### Enhancements
+
+* Clock skew tolerance for oidc token validation ([#2482](https://github.com/opensearch-project/security/pull/2482))
+* Adding index template permissions to kibana_server role ([#2503](https://github.com/opensearch-project/security/pull/2503))
+* Add a test in order to catch incorrect handling of index parsing during Snapshot Restoration ([#2384](https://github.com/opensearch-project/security/pull/2384))
+* Expand Dls Tests for easier verification of functionality ([#2634](https://github.com/opensearch-project/security/pull/2634))
+* New system index[.ql-datasources] for ppl/sql datasource configurations ([#2650](https://github.com/opensearch-project/security/pull/2650))
+* Allows for configuration of LDAP referral following ([#2135](https://github.com/opensearch-project/security/pull/2135))
+
+### Maintenance
+
+* Update kafka client to 3.4.0 ([#2484](https://github.com/opensearch-project/security/pull/2484))
+* Update to gradle 8.0.2 ([#2520](https://github.com/opensearch-project/security/pull/2520))
+* XContent Refactor ([#2598](https://github.com/opensearch-project/security/pull/2598))
+* Update json-smart to 2.4.10 and update spring-core to 5.3.26 ([#2630](https://github.com/opensearch-project/security/pull/2630))
+* Update certs for SecuritySSLReloadCertsActionTests ([#2679](https://github.com/opensearch-project/security/pull/2679))
+
+### Infrastructure
+
+* Add auto github release workflow ([#2450](https://github.com/opensearch-project/security/pull/2450))
+* Use correct format for push trigger ([#2474](https://github.com/opensearch-project/security/pull/2474))
+
+### Documentation
+
+* Fix the format of the codeowners file ([#2469](https://github.com/opensearch-project/security/pull/2469))