build(deps): bump github.com/hashicorp/consul from 1.20.1 to 1.20.2 in /connect-native

[dependabot]

Bumps github.com/hashicorp/consul from 1.20.1 to 1.20.2.

Release notes

Sourced from github.com/hashicorp/consul's releases.

v1.20.2

1.20.2 (December 26, 2024)

SECURITY:

• Removed ability to use bexpr to filter results without ACL read on endpoint [GH-21950]
• Resolved issue where hcl would allow duplicates of the same key in acl policy configuration. [GH-21908]
• Update github.com/golang-jwt/jwt/v4 to v4.5.1 to address GHSA-29wx-vh33-7x7r. [GH-21951]
• Update golang.org/x/crypto to v0.31.0 to address GO-2024-3321. [GH-22001]
• Update golang.org/x/net to v0.33.0 to address GO-2024-3333. [GH-22021]
• Update registry.access.redhat.com/ubi9-minimal image to 9.5 to address CVE-2024-3596,CVE-2024-2511,CVE-2024-26458. [GH-22011]
• api: Enforces strict content-type header validation to protect against XSS vulnerability. [GH-21930]

FEATURES:

• docs: added the docs for the grafana dashboards [GH-21795]

BUG FIXES:

• proxycfg: fix a bug where peered upstreams watches are canceled even when another target needs it. [GH-21871]
• state: ensure that identical manual virtual IP updates result in not bumping the modify indexes [GH-21909]

Commits

• 33e5727 Manual backport of Added labels for redhat validation into release/1.20.2 (#2...
• e611a18 Stage 1.20.2 (#22037)
• e71b525 Update the submodules for 1.20.x (#22034)
• 3bba4b2 Revert "Update api submodule versions to v1.31.0 for envoyextensions" (#22033)
• 6e4411d Update api submodule versions to v1.31.0 for envoyextensions (#22032)
• 8e194ac Backport of Update API Group under backendRefs into release/1.20.x (#21965)
• 730a556 Backport of docs: fix broken link into release/1.20.x (#21977)
• c3707ea Backport of sec: bump envoy patch versions into release/1.20.x (#22025)
• f8a0bd0 Backport of chore: remove staff codeowners now that it requires mandatory rev...
• b453677 Backport of Suppress redhat linux CVEs into release/1.20.x (#22029)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)