What's Changed

Security

• Addresses CVE-2026-22724

Fixes

• Add ProxyRestriction Validator by @mikeroda in #3758
• fix saml and invitations beans by @fhanik in #3762

Misc

• Rerun flaky tests in integration tests pipeline by @duanemay in #3752

Dependency Bumps

• build(deps): bump k8s.io/client-go from 0.35.1 to 0.35.2 in /k8s by @dependabot[bot] in #3754
• build(deps): bump actions/upload-artifact from 6 to 7 by @dependabot[bot] in #3756
• build(deps): bump minimatch from 10.2.2 to 10.2.4 in /uaa by @dependabot[bot] in #3757
• build(deps): bump docker/login-action from 3 to 4 by @dependabot[bot] in #3759

Full Changelog: v78.8.0...v78.9.0