From f59790b0caa8966a68be3353b132634f35aefbe6 Mon Sep 17 00:00:00 2001
From: Andrii Konchyn <andry.konchin@gmail.com>
Date: Fri, 31 May 2024 23:18:44 +0300
Subject: [PATCH] Fix the NEWS.md and change PR reference that fixes
 CVE-2024-35176 (#133)

It seems to me that mentioned in the NEWS.md and in the release notes PR
#124 ("Move development dependencies to Gemfile") isn't a correct one
and not related to CVE-2024-35176:

```
- Improved parse performance when an attribute has many <s.
  - GH-124
```

#126 looks like fixes the issue with attribute value that contains
multiple '>' characters. At least it adds a proper test.
---
 NEWS.md | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/NEWS.md b/NEWS.md
index 013409e6..7bfe3b9a 100644
--- a/NEWS.md
+++ b/NEWS.md
@@ -30,7 +30,7 @@
 
   * Improved parse performance when an attribute has many `<`s.
 
-    * GH-124
+    * GH-126
 
 ### Fixes