the git repo has more info about the 15.11.2 release: <a href="https://gitlab.com/gitlab-org/gitlab/-/commit/d5dc7d794ce2fca51f0737f3b5be8366b9df6117" rel="nofollow">https://gitlab.com/gitlab-org/gitlab/-/commit/d5dc7d794ce2fc...</a><p>- Only maintainers of projects should be able to assign runners to them (gitlab-org/security/gitlab@c52abfffad2c06c2a49788e3db473f14923c3926), merge request (gitlab-org/security/gitlab!3234)<p>- Authorize access to vulnerabilitiesCountByDay resolver (gitlab-org/security/gitlab@8e78aecb9a6c248099a043f181de3c8f6d4417ce)<p>and a bit of further digging shows the commit for the first issue mentioned above, adding a permission check: <a href="https://gitlab.com/gitlab-org/gitlab/-/commit/c52abfffad2c06c2a49788e3db473f14923c3926" rel="nofollow">https://gitlab.com/gitlab-org/gitlab/-/commit/c52abfffad2c06...</a>
GitLab team member here.<p>The release post has been published and can be found here: <a href="https://about.gitlab.com/releases/2023/05/05/critical-security-release-gitlab-15-11-2-released/" rel="nofollow">https://about.gitlab.com/releases/2023/05/05/critical-securi...</a>