GHSA-9h9q-qhxg-89xr: Filament has unvalidated ColorColumn and ColorEntry values that can be used for Cross-site Scripting

GHSA-jg74-mwgw-v6x3: Vault SSH Secrets Engine Configuration Did Not Restrict Valid Principals By Default

In Gitea through 1.17.1, repo cloning can occur in the migration function.

**Gitea erroneous repo clones**

Moderate severity GitHub Reviewed Published Aug 7, 2023 to the GitHub Advisory Database • Updated Aug 9, 2023