This PR has been generated automatically.
For more details see
[upmerge_pr.yaml](/Sylius/Sylius/blob/1.13/.github/workflows/upmerge_pr.yaml).
**Remember!** The upmerge should always be merged with using `Merge pull
request` button.
In case of conflicts, please resolve them manually with usign the
following commands:
```
git fetch upstream
gh pr checkout <this-pr-number>
git merge upstream/payment-request -m "Resolve conflicts between 2.0 and payment-request"
```
If you use other name for the upstream remote, please replace `upstream`
with the name of your remote pointing to the `Sylius/Sylius` repository.
Once the conflicts are resolved, please run `git merge --continue` and
push the changes to this PR.
* 1.10:
[Security] XSS - SVG file upload vulnerability fixed
[PHPUnit] Move subscribers tests to main directory
Replace str_contains with strpos method to support PHP 7
[Behat] Extract browser element and context
[Behat] Add scenarios for securing access to account and dashboard after logging out
Minor fixes for specs and unit tests of cache control subscribers
Remove type declarations for properties due to supporting PHP 7.3
[Maintenace] Test existence of new cache headers
[UI] Force no-store cache directives for admin and customer account section
suggested review changes
listener added to finish response with X-Frame-Options sameorigin header
* 1.9:
[Security] XSS - SVG file upload vulnerability fixed
[PHPUnit] Move subscribers tests to main directory
Replace str_contains with strpos method to support PHP 7
[Behat] Extract browser element and context
[Behat] Add scenarios for securing access to account and dashboard after logging out
Minor fixes for specs and unit tests of cache control subscribers
Remove type declarations for properties due to supporting PHP 7.3
[Maintenace] Test existence of new cache headers
[UI] Force no-store cache directives for admin and customer account section
suggested review changes
listener added to finish response with X-Frame-Options sameorigin header