chore: update release notes (#610)

Author: themr0c

assemblies/assembly-release-notes-breaking-changes.adoc

@@ -5,11 +5,16 @@
 This section lists breaking changes in {product} {product-version}.
 
 
-include::modules/release-notes/snip-removed-functionality-rhidp-4293.adoc[leveloffset=+1]
+include::modules/release-notes/snip-removed-functionality-rhidp-3048.adoc[leveloffset=+1]
 
 
-include::modules/release-notes/snip-removed-functionality-rhidp-3048.adoc[leveloffset=+1]
+include::modules/release-notes/snip-removed-functionality-rhidp-3074.adoc[leveloffset=+1]
 
 
 include::modules/release-notes/snip-removed-functionality-rhidp-3187.adoc[leveloffset=+1]
 
+
+include::modules/release-notes/snip-removed-functionality-rhidp-4293.adoc[leveloffset=+1]
+
+
+

assemblies/assembly-release-notes-known-issues.adoc

@@ -5,6 +5,9 @@
 This section lists known issues in {product} {product-version}.
 
 
+include::modules/release-notes/snip-known-issue-rhidp-4378.adoc[leveloffset=+1]
+
+
 include::modules/release-notes/snip-known-issue-rhidp-4069.adoc[leveloffset=+1]
 
 

build/scripts/single-source-release-notes.py renamed to modules/release-notes/single-source-release-notes.py

@@ -54,7 +54,7 @@
 )
 # Delete old file files.
 fileList = glob.glob(
-  modules_dir + 'snip-*.adoc'
+  modules_dir + 'snip-*-rhidp-*.adoc'
 )
 for filePath in fileList:
   os.remove(filePath)

modules/release-notes/snip-cve---common-vulnerabilities-and-exposures-rhidp-3403.adoc

@@ -0,0 +1,9 @@
+[id="known-issue-rhidp-4378"]
+= Admin users should have high privilage
+
+A conditional alias that uses `$ownerRefs` doesn't work.
+
+There is no workaround.
+
+.Additional resources
+* link:https://issues.redhat.com/browse/RHIDP-4378[RHIDP-4378]

modules/release-notes/snip-known-issue-rhidp-4378.adoc

@@ -0,0 +1,10 @@
+[id="removed-functionality-rhidp-3074"]
+= Signing in without user in the software catalog is now disabled by default
+
+By default, it is now required for the user entity to exist in the software catalog to allow sign in. 
+This is required for production ready deployments since identities need to exist and originate from a trusted source (i.e. the Identity Provider) in order for security controls such as RBAC and Audit logging to be effective. 
+To bypass this, enable the `dangerouslySignInWithoutUserInCatalog` configuration that allows sign in without the user being in the catalog.
+Enabling this option is dangerous as it might allow unauthorized users to gain access.
+
+.Additional resources
+* link:https://issues.redhat.com/browse/RHIDP-3074[RHIDP-3074]

modules/release-notes/snip-removed-functionality-rhidp-3074.adoc

@@ -1,10 +1,8 @@
-[id="removed-functionality-rhidp-3187"]
-= {company-name} and Community Technology Preview (TP) plugins and actions are disabled by default
-
-
+[id="removed-functionality-rhidp-3187"]
+= {company-name} and Community Technology Preview (TP) plugins and actions are disabled by default
+
 Before this update, some {company-name} and Community Technology Preview (TP) plugins and actions were enabled by default:
 
-
 .Technology Preview plugins
 * @backstage-community/plugin-catalog-backend-module-scaffolder-relation-processor (changing in RHIDP-3643)
 
@@ -20,11 +18,10 @@ Before this update, some {company-name} and Community Technology Preview (TP) pl
 
 With this update, all plugins included under the link:https://access.redhat.com/support/offerings/techpreview[Technology Preview scope of support], whether from {company-name} or the community, are disabled by default.
 
-
 .Procedure
 * If your workload requires these plugins, enable them in your custom resource or configmap using `disabled: false`. 
 
-//See https://github.com/redhat-developer/red-hat-developer-hub/blob/main/dynamic-plugins.default.yaml for examples.
-
-.Additional resources
-* link:https://issues.redhat.com/browse/RHIDP-3187[RHIDP-3187]
+//See https://github.com/redhat-developer/red-hat-developer-hub/blob/main/dynamic-plugins.default.yaml for examples.
+
+.Additional resources
+* link:https://issues.redhat.com/browse/RHIDP-3187[RHIDP-3187]