From 065fe32c1be3b88d4facb45815f53b7668544a7c Mon Sep 17 00:00:00 2001
From: Kent 'picat' Gruber <kent@hashicorp.com>
Date: Wed, 14 Apr 2021 20:08:51 -0400
Subject: [PATCH] Merge pull request #10030 from
 hashicorp/fix-ent-audit-log-bypass

Add synthetic enterprise entry for CVE-2021-28156
---
 .changelog/_795.txt | 3 +++
 1 file changed, 3 insertions(+)
 create mode 100644 .changelog/_795.txt

diff --git a/.changelog/_795.txt b/.changelog/_795.txt
new file mode 100644
index 0000000000..5c80d79249
--- /dev/null
+++ b/.changelog/_795.txt
@@ -0,0 +1,3 @@
+```release-note:security
+audit-logging: Parse endpoint URL to prevent requests from bypassing the audit log [CVE-2021-28156](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28156)
+```