New Features
- Envoy rejects headerManipulation.responseHeadersToAdd headers where the key start with a ':' and Host headers. We will now reject those headers in gloo validation instead of passing the invalid config to envoy. (#8225)
- Allow configuring secrets resource clients with multiple underlying source clients. This will allow Gloo Edge to List and Watch secrets from any number of the currently supported sources (i.e. Directory, Kubernetes, Vault). It is the responsibility of the user to ensure there are no namespace+name collisions across all configured sources. (https://github.com/solo-io/solo-projects/issues/4892)