GitLab | Report #1923672 - Account takeover due to insufficient URL validation on RelayState parameter | HackerOne

https://hackerone.com/reports/1923672

https://twitter.com/home/status/1663470031819403264

https://twitter.com/home/status/1663470385713610752

https://twitter.com/home/status/1663470561463513092

https://twitter.com/home/status/1663485784618311680

https://twitter.com/home/status/1663560156750413826