Finally finishing off a long overdue release.
Changes since DRUPAL-6--1-8:
- #420738 Fix issue with handling of  in urls
- #597432 - Add back in missing global declaration
- #600106 by jhedstrom | andrejpodzimek: Changed Parameters passed by value instead of reference.
- #264987 by DamienMcKenna | fletchgqc: Default options don't secure login?.
- Fix up issue with call to filter_xss_bad_protocol().
- fix #1030296 : Variables not removed from the variables table when modules is uninstalled.
- Patch #428808 by AlexisWilke - WYSIWYG editors should be disabled on textareas in the admin page
- Patch #599948 : jrglasgow, cubbtech - conflict with drush (headers already sent)
- Fix Open redirection vulnerability - DRUPAL-SA-CONTRIB-2011-011