When we can't resolve the hostname or it is invalid, we shouldn't
even perform the request. This fix also fixes the problem the
SSRF rebinding attack.

We can't stub feature flags outside example blocks. Nevertheless,
there are some actions that calls the UrlBlocker, that are performed
outside example blocks, ie: `set` instruction.

That's why we have to use some signalign mechanism outside the scope
of the specs.

[ci skip]

Support object storage at FileMover class

See merge request gitlab/gitlabhq!3196

[ci skip]

Ability to write a note in a private snippet

See merge request gitlab/gitlabhq!3141

Prevent Billion Laughs attack

See merge request gitlab/gitlabhq!3144

Guests can know whether merge request template name exists or not

See merge request gitlab/gitlabhq!3149

Fix MR head pipeline leak

See merge request gitlab/gitlabhq!3155

Fix DOS when rendering issue/MR comments

See merge request gitlab/gitlabhq!3158

Persist tmp snippet uploads at users

See merge request gitlab/gitlabhq!3165

Expose merge requests count based on user access

See merge request gitlab/gitlabhq!3168

Fix type authorizations in GraphQL

See merge request gitlab/gitlabhq!3173

Fix color validation regex causing DoS

See merge request gitlab/gitlabhq!3177

Disable Rails SQL query cache when applying service templates

See merge request gitlab/gitlabhq!3180

[ci skip]

Prepare 11.11.4 release

See merge request gitlab-org/gitlab-ce!30069

Master i18n 11.11

See merge request gitlab-org/gitlab-ce!30083

[skip ci]

[skip ci]

[skip ci]

[skip ci]

[skip ci]

[skip ci]

[skip ci]

[skip ci]

[skip ci]

[skip ci]

[skip ci]

[skip ci]

[skip ci]

[skip ci]

[skip ci]

[skip ci]

[skip ci]

[skip ci]

[skip ci]

[skip ci]