Added patch release notes for 4.7.4

Author: gaurav-nelson

modules/common-attributes.adoc

@@ -58,7 +58,7 @@ endif::[]
 :osp: Red{nbsp}Hat OpenShift
 :olm-first: Operator Lifecycle Manager (OLM)
 :olm: OLM
-:rhacs-version: 4.7.3
+:rhacs-version: 4.7.4
 :ocp-supported-version: 4.12
 :ocp-latest-version: 4.17
 :plugin-acs-latest-version: 0.0.4

release_notes/47-release-notes.adoc

@@ -19,6 +19,7 @@ toc::[]
 |`4.7.1` | 31 March 2025
 |`4.7.2` | 15 April 2025
 |`4.7.3` | 15 May 2025
+|`4.7.4` | 11 June 2025
 
 |====
 
@@ -457,4 +458,20 @@ This release of {product-title-short} includes the following bug fixes:
 //ROX-28954
 * Before this update, the long-running GraphQL-based requests would time out. With this update, the default client timeout for GraphQL-based queries has been increased from 60 seconds to 180 seconds to avoid timeouts for long-running requests.
 
+[id="about-release-474_{context}"]
+== About release version 4.7.4
+
+*Release date*: 11 June 2025
+
+This release of {product-title-short} 4.7 provides the following bug fixes:
+
+* Fixed an issue where images were mistakenly pruned when the inactive images retention value was set to `0`. This action caused resetting of the `firstDiscovered` and `firstImageOccurrence` values for CVEs.
+
+* Fixed an issue with the web portal where you could not scroll when assigning roles to an auth provider.
+
+This release provides fixes for the following security issues:
+
+* zlib: Out-of-bounds pointer arithmetic in `inftrees.c` link:https://access.redhat.com/security/cve/CVE-2016-9840[(CVE-2016-9840)]
+* krb5: Kerberos RC4-HMAC-MD5 checksum vulnerability link:https://access.redhat.com/security/cve/CVE-2025-3576[(CVE-2025-3576)]
+
 include::modules/image-versions.adoc[leveloffset=+1]