Bump wagtail from 5.1.1 to 5.1.3

[dependabot[bot]]

Bumps wagtail from 5.1.1 to 5.1.3.

Release notes

Sourced from wagtail's releases.

5.1.3

• Fix: CVE-2023-45809: Disclosure of user names via admin bulk action views (Matt Westcott)
• Fix: Fix SnippetBulkAction not respecting models definition (Sandro Rodrigues)
• Fix: Correctly quote non-numeric primary keys on snippet inspect view (Sage Abdullah)
• Fix: Prevent crash on snippet inspect view when displaying a null foreign key to an image (Sage Abdullah)
• Fix: Populate the correct return value when creating a new snippet within the snippet chooser (claudobahn)
• Fix: Reinstate missing filter by page type on page search (Matt Westcott)
• Fix: Use the correct action log when creating a redirect (Thibaud Colas)

5.1.2

• Fix: Avoid use of ignore_conflicts when creating extra permissions for snippets, for SQL Server compatibility (Sage Abdullah)
• Fix: Ensure sequence on wagtailsearchpromotions_query table is correctly set after migrating data (Jake Howard)
• Fix: Change spreadsheet export headings to match listing view column headings (Christer Jensen, Sage Abdullah)
• Fix: Fix numbers, booleans, and None from being exported as strings (Christer Jensen)
• Fix: Restore fallback on full-word search for snippet choosers and generic index views (Matt Westcott)
• Fix: Restore compatibility with pre-7.15 versions of the Elasticsearch Python library, allowing use of Opensearch (Matt Westcott)
• Fix: Fix error when pickling BaseSiteSetting instances (Matt Westcott)
• Maintenance: For Python 3.13 support - upgrade Willow to v1.6.2, replace imghdr with Willow's built-in MIME type detection (Jake Howard)

Changelog

Sourced from wagtail's changelog.

5.1.3 (19.10.2023)

 * Fix: CVE-2023-45809: Disclosure of user names via admin bulk action views (Matt Westcott)
 * Fix: Fix `SnippetBulkAction` not respecting `models` definition (Sandro Rodrigues)
 * Fix: Correctly quote non-numeric primary keys on snippet inspect view (Sage Abdullah)
 * Fix: Prevent crash on snippet inspect view when displaying a null foreign key to an image (Sage Abdullah)
 * Fix: Populate the correct return value when creating a new snippet within the snippet chooser (claudobahn)
 * Fix: Reinstate missing filter by page type on page search (Matt Westcott)
 * Fix: Use the correct action log when creating a redirect (Thibaud Colas)
5.1.2 (25.09.2023)

• Fix: Avoid use of ignore_conflicts when creating extra permissions for snippets, for SQL Server compatibility (Sage Abdullah)
• Fix: Ensure sequence on wagtailsearchpromotions_query table is correctly set after migrating data (Jake Howard)
• Fix: Change spreadsheet export headings to match listing view column headings (Christer Jensen, Sage Abdullah)
• Fix: Fix numbers, booleans, and None from being exported as strings (Christer Jensen)
• Fix: Restore fallback on full-word search for snippet choosers and generic index views (Matt Westcott)
• Fix: Restore compatibility with pre-7.15 versions of the Elasticsearch Python library, allowing use of Opensearch (Matt Westcott)
• Fix: Fix error when pickling BaseSiteSetting instances (Matt Westcott)
• Maintenance: For Python 3.13 support - upgrade Willow to v1.6.2, replace imghdr with Willow's built-in MIME type detection (Jake Howard)

Commits

• 582d4d9 Version bump to 5.1.3
• b0b70b1 Release note for CVE-2023-45809 in 5.1.3 (and fill in release date)
• aa838f3 Add 5.0.5 release note page
• bc11788 Release note for CVE-2023-45809 in 5.0.5
• c8c313e Release note for CVE-2023-45809 in 4.1.9
• bc96aed Redirect away from user bulk actions when user has no permissions on users
• 190af78 Add release notes for #11080, #11081 in v5.1.3
• 087d566 Use the correct action log when creating a redirect
• 6595b3d Docs - Fix typo for migration command in the section under Tag posts
• 893143b Fix port number in tutorial
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/infoportugal/wagtail-modeltranslation/network/alerts).

[dependabot[bot]]

OK, I won't notify you again about this release, but will get in touch when a new version is available. If you'd rather skip all updates until the next major or minor version, let me know by commenting @dependabot ignore this major version or @dependabot ignore this minor version.

If you change your mind, just re-open this PR and I'll resolve any conflicts on it.