Important: Please read the migration guide.

Bug fixes:

• [acme] Bump github.com/go-acme/lego/v4 to v4.34.0 (#12993 @ldez)
• [docker] Downgrade log level for missing container on inspect (#12900 @Otoru)
• [sticky-session, k8s/crd] Make SameSite cookie value case-insensitive (#12922 @murataslan1)
• [k8s/crd, k8s] Honor allowCrossNamespace with chain middleware CRD (#12976 @rtribotte)
• [middleware] Remove untrusted X headers with underscores (#12961 @rtribotte)
• [middleware] Sanitize the request URL after stripping the prefix (#12990 @kevinpollet)
• [middleware] Deprecate ForwardAuth.TrustForwardHeader option (#13012 @kevinpollet)
• [middleware, authentication] Remove map lookup making the basic auth notFoundSecret empty (#12960 @rtribotte)
• [middleware, authentication] Fix trustForwardHeader on forward auth middleware (#12994 @juliens)
• [middleware, authentication] Cleanup and make ForwardAuth logs consistent (#13013 @kevinpollet)
• [webui] Upgrade form-data to 2.5.4, 3.0.4, 4.0.4 (#12958 @orbisai0security)

Documentation:

• [k8s] Fix yaml indentation (#12957 @isayme)
• [k8s] Clarify install config watchNamespace watches only one namespace (#12962 @parkerfath)
• [k8s/crd] Update ingressroute.md (#12916 @Rajakavitha1)
• Reverse versions order in migration guide (#12959 @nmengin)
• Update vulnerability submission guidelines (#12968 @emilevauge)