[CE 3.22 EP3] Modify release notes for 3.22 EP3

[sabags]

Product Version(s):
Calico Enterprise v3.22 EP3

Issue:
Release note was missing to highlight a key issue

Link to docs preview:

SME review:

• An SME has approved this change.

DOCS review:

• A member of the docs team has approved this change.

Additional information:

Merge checklist:

• Deploy preview inspected wherever changes were made
• Build completed successfully
• Test have passed

[netlify]

✅ Deploy Preview for calico-docs-preview-next ready!

Name	Link
🔨 Latest commit	67ff078
🔍 Latest deploy log	https://app.netlify.com/projects/calico-docs-preview-next/deploys/695ef75f9c42ea00082931c9
😎 Deploy Preview	https://deploy-preview-2452--calico-docs-preview-next.netlify.app
📱 Preview on mobile	Toggle QR Code... Use your smartphone camera to open QR code link.

---

To edit notification comments on pull requests, go to your Netlify project configuration.

[netlify]

✅ Deploy Preview succeeded!

Built without sensitive environment variables

Name	Link
🔨 Latest commit	67ff078
🔍 Latest deploy log	https://app.netlify.com/projects/tigera/deploys/695ef75f105b7c0008787d05
😎 Deploy Preview	https://deploy-preview-2452--tigera.netlify.app
📱 Preview on mobile	Toggle QR Code... Use your smartphone camera to open QR code link.
Lighthouse	1 paths audited Performance: 70 (🔴 down 3 from production) Accessibility: 90 (no change from production) Best Practices: 92 (no change from production) SEO: 92 (no change from production) PWA: - View the detailed breakdown and full score reports

---

To edit notification comments on pull requests, go to your Netlify project configuration.

[Copilot]

Pull request overview

This PR adds a release note entry for Calico Enterprise v3.22 EP3 to document a critical known issue with Felix panicking when WAF/L7 features are enabled in eBPF mode.

Key Changes

• Added a new known issue to the release notes documenting Felix panic behavior with WAF/L7 features in eBPF mode

[Copilot]

The known issue lacks important context for users encountering this problem. Consider adding details about: 1) what triggers this panic (specific configuration or conditions), 2) the impact on system functionality, and 3) any available workarounds or recommended actions until a fix is available. This would align with the level of detail provided in the preceding known issue about nftables binaries.

Suggested change

	* Felix panics when WAF/L7 features are enabled in eBPF mode.
	* Felix can panic on nodes that run the eBPF data plane when WAF or other L7 features (such as L7 logging) are enabled.
	This causes Felix to restart on the affected nodes, which can delay or temporarily interrupt the programming of network policy and dataplane state.
	As a workaround until a fix is available, avoid enabling WAF/L7 features on clusters using the eBPF data plane, or disable those features on affected nodes and use non-L7 policies only.

[ctauchen]

+1 @sabags @rene-dekker Can we add more information here?

[sabags]

@ctauchen : do you think the copilot suggestion is better here ?

[ctauchen]

I think it's always good to have those elements in a known issue. Conditions for problem, description of workaround, and indicate whether this is due to be fixed.

[ctauchen]

@sabags I'm merging this now so we have something in there. It would be good to follow up with details when you get them.