Bump wagtail from 2.13.2 to 2.15.2

[dependabot]

Bumps wagtail from 2.13.2 to 2.15.2.

Release notes

Sourced from wagtail's releases.

2.15.2

• Fix: CVE-2022-21683 - Comment reply notifications sent to incorrect users (Ihor Marhitych, Jacob Topp-Mugglestone)
• Fix: Transform operations in Filter.run() when image has been re-oriented (Justin Michalicek)
• Fix: Remove extraneous header action buttons when creating or editing workflows and tasks (Matt Westcott)
• Fix: Ensure that bulk publish actions pick up the latest draft revision (Matt Westcott)
• Fix: Ensure the checkbox_aria_label is used correctly in the Bulk Actions checkboxes (Vu Pham)
• Fix: Prevent error on MySQL search backend when searching three or more terms (Aldán Creo)
• Fix: Allow wagtail.search app migrations to complete on versions of SQLite without full-text search support (Matt Westcott)
• Fix: Update Pillow dependency to allow 9.x (Matt Westcott)

2.15.1

• Fix: Fix syntax when logging image rendition generation (Jake Howard)
• Fix: Increase version range for django-filter dependency (Serafeim Papastefanos)
• Fix: Prevent bulk action checkboxes from displaying on page reports and other non-explorer listings (Matt Westcott)
• Fix: Fix errors on publishing pages via bulk actions (Matt Westcott)
• Fix: Fix csrf_token issue when using the Approve or Unlock buttons on pages on the Wagtail admin home (Matt Westcott)

2.15

• Implemented a new database search backend that supports the FTS features of the database in use (Developed by Aldán Creo. Mentored by Karl Hobley and Cynthia Kiser. Funded by Google Summer of Code)
• Added bulk actions in the Wagtail Admin for Pages, Users, Images and Documents (Developed by Shohan Dutta Roy. Mentored by Dan Braghis, Jacob Topp-Mugglestone, and Storm Heg.)
• Extended audit logging to all models and added a history view for snippets and ModelAdmin (Matt Westcott. Sponsored by The Motley Fool)
• Allow granting collection management permissions over individual collections (Cynthia Kiser)
• Added TypedTableBlock block type for StreamField, for building tables with mixed data types (Matt Westcott, Coen van der Kamp, Scott Cranfill. Sponsored by YouGov)
• Add the ability for the page chooser to convert external urls that match a page to internal links (Jacob Topp-Mugglestone. Sponsored by The Motley Fool)
• Added "Extending Wagtail" section to documentation (Matt Westcott)
• Introduced template components, a standard mechanism for renderable objects in the admin (Matt Westcott)
• Support min_num / max_num options on ListBlock (Matt Westcott)
• Implemented automatic tree synchronisation for contrib.simple_translation (Mitchel Cabuloy)
• Added a background_position_style property to renditions (Karl Hobley)
• Added a distinct wagtail.copy_for_translation log action type (Karl Hobley)
• Add a debug logger around image rendition generation (Jake Howard)
• Convert Documents and Images to class based views for easier overriding (Matt Westcott)
• Isolate admin URLs for Documents and Images search listing results with the name 'listing_results' (Matt Westcott)
• Removed request.is_ajax() usage in Documents, Image and Snippet views (Matt Westcott)
• Simplify generic admin view templates plus ensure page_title and page_subtitle are used consistently (Matt Westcott)
• Extend support for collapsing edit panels from just MultiFieldPanels to all kinds of panels (Fabien Le Frapper, Robbie Mackay)
• Add object count to header within modeladmin listing view (Jonathan "Yoni" Knoll)
• Add ability to return HTML in multiple image upload errors (Gordon Pendleton)
• Upgrade internal JS tooling; Node v14 plus other smaller package upgrades (LB (Ben Johnston))
• Add support for non_field_errors rendering in Workflow action modal (LB (Ben Johnston))
• Support calling get_image_model and get_document_model at import time (Matt Westcott)
• When copying a page, default the 'Publish copied page' field to false (Justin Slay)
• Open Preview and Live page links in the same tab, except where it would interrupt editing a Page (Sagar Agarwal)
• Added ExcelDateFormatter to wagtail.admin.views.mixins so that dates in Excel exports will appear in the locale's SHORT_DATETIME_FORMAT (Andrew Stone)
• Add TIDAL support to the list of oEmbed providers (Wout De Puysseleir)
• Add label_format attribute to customise the label shown for a collapsed StructBlock (Matt Westcott)
• User Group permissions will now show all custom object permissions in one row instead of a separate table (Kamil Marut)
• Create ImageFileMixin to extract shared file handling methods from AbstractImage and AbstractRendition (Fabien Le Frapper)
• Add before_delete_page and register_permissions examples to Hooks documentation (Jane Liu, Daniel Fairhead)
• Add clarity to modeladmin template override behaviour in the documentation (Joe Howard, Dan Swain)

... (truncated)

Changelog

Sourced from wagtail's changelog.

2.15.2 (18.01.2022)

 * Fix: CVE-2022-21683 - Comment reply notifications sent to incorrect users (Ihor Marhitych, Jacob Topp-Mugglestone)
 * Fix: Transform operations in Filter.run() when image has been re-oriented (Justin Michalicek)
 * Fix: Remove extraneous header action buttons when creating or editing workflows and tasks (Matt Westcott)
 * Fix: Ensure that bulk publish actions pick up the latest draft revision (Matt Westcott)
 * Fix: Ensure the `checkbox_aria_label` is used correctly in the Bulk Actions checkboxes (Vu Pham)
 * Fix: Prevent error on MySQL search backend when searching three or more terms (Aldán Creo)
 * Fix: Allow wagtail.search app migrations to complete on versions of SQLite without full-text search support (Matt Westcott)
 * Fix: Update Pillow dependency to allow 9.x (Matt Westcott)
2.15.1 (11.11.2021)

• Fix: Fix syntax when logging image rendition generation (Jake Howard)
• Fix: Increase version range for django-filter dependency (Serafeim Papastefanos)
• Fix: Prevent bulk action checkboxes from displaying on page reports and other non-explorer listings (Matt Westcott)
• Fix: Fix errors on publishing pages via bulk actions (Matt Westcott)
• Fix: Fix csrf_token issue when using the Approve or Unlock buttons on pages on the Wagtail admin home (Matt Westcott)

2.15 LTS (04.11.2021)

 * Implemented a new database search backend that supports the FTS features of the database in use (Developed by Aldán Creo. Mentored by Karl Hobley and Cynthia Kiser. Funded by Google Summer of Code)
 * Added bulk actions in the Wagtail Admin for Pages, Users, Images and Documents (Developed by Shohan Dutta Roy. Mentored by Dan Braghis, Jacob Topp-Mugglestone, and Storm Heg.)
 * Extended audit logging to all models and added a history view for snippets and ModelAdmin (Matt Westcott. Sponsored by The Motley Fool)
 * Allow granting collection management permissions over individual collections (Cynthia Kiser)
 * Added `TypedTableBlock` block type for StreamField, for building tables with mixed data types (Matt Westcott, Coen van der Kamp, Scott Cranfill. Sponsored by YouGov)
 * Add the ability for the page chooser to convert external urls that match a page to internal links (Jacob Topp-Mugglestone. Sponsored by The Motley Fool)
 * Added "Extending Wagtail" section to documentation (Matt Westcott)
 * Introduced template components, a standard mechanism for renderable objects in the admin (Matt Westcott)
 * Support `min_num` / `max_num` options on ListBlock (Matt Westcott)
 * Implemented automatic tree synchronisation for `contrib.simple_translation` (Mitchel Cabuloy)
 * Added a `background_position_style` property to renditions (Karl Hobley)
 * Added a distinct `wagtail.copy_for_translation` log action type (Karl Hobley)
 * Add a debug logger around image rendition generation (Jake Howard)
 * Convert Documents and Images to class based views for easier overriding (Matt Westcott)
 * Isolate admin URLs for Documents and Images search listing results with the name `'listing_results'` (Matt Westcott)
 * Removed `request.is_ajax()` usage in Documents, Image and Snippet views (Matt Westcott)
 * Simplify generic admin view templates plus ensure `page_title` and `page_subtitle` are used consistently (Matt Westcott)
 * Extend support for collapsing edit panels from just MultiFieldPanels to all kinds of panels (Fabien Le Frapper, Robbie Mackay)
 * Add object count to header within modeladmin listing view (Jonathan "Yoni" Knoll)
 * Add ability to return HTML in multiple image upload errors (Gordon Pendleton)
 * Upgrade internal JS tooling; Node v14 plus other smaller package upgrades (LB (Ben Johnston))
 * Add support for `non_field_errors` rendering in Workflow action modal (LB (Ben Johnston))
 * Support calling `get_image_model` and `get_document_model` at import time (Matt Westcott)
 * When copying a page, default the 'Publish copied page' field to false (Justin Slay)
</tr></table> 

... (truncated)

Commits

• f56426c Fill in release date for 2.15.2
• bbafc97 Release note for CVE-2022-21683
• 2e3d648 Make comment notifications not using page permissions more transparent
• 2fa468e Fix commenting thread notifications being sent to non-thread users
• eac906e Increase Pillow dependency range to include 9.x (#7831)
• bd08770 Release note for non-fts sqlite support
• 3986519 Allow running wagtailsearch migration 0006 in reverse when the index table is...
• 1c9c2da Warn and use fallback backend if fts5 is available but the index table is mis...
• 71e63eb Preserve original exception output when catching OperationalError
• a7ba970 Skip sqlite search backend tests if fts5 is unavailable
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
• @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
• @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
• @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
• @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

You can disable automated security fix PRs for this repo from the Security Alerts page.