UPGRADE FROM `v1.1.9` TO `v1.1.10`

BC BREAK: OrderShowMenuBuilder constructor now requires the fourth argument being Symfony\Component\Security\Csrf\CsrfTokenManagerInterface instance due to security reasons.

UPGRADE FROM `v1.1.0` TO `v1.1.9`

BC BREAK: Sylius\Bundle\ResourceBundle\Controller::applyStateMachineTransitionAction method now includes CSRF token checks due to security reasons. If you used it for REST API, these checks can be disabled by adding csrf_protection: false to your routing configuration.

Scanning for composer.json file inside themes directories is recursive by default, which can result in slow performance when e.g. a node_modules folder is present inside a theme folder. Supply the optional scan_depth (integer) setting to the sylius_theme configuration to restrict scanning for the theme configuration file to a specific depth inside the specified theme directories.
Methods createQueryBuilderByProductCode and findOneByIdAndProductCode were added to Sylius\Component\Core\Repository\ProductReviewRepositoryInterface (no manual action needed if your implementation extends Sylius\Bundle\CoreBundle\Doctrine\ORM\ProductReviewRepository).
Copy the following migrations from vendor/sylius/sylius/app/migrations to your own application, review them and apply them afterwards.
- Version20170913125128.php
- Version20171003103916.php
- Version20180102140039.php