Improper access control in GitLab EE versions 13.11.6, 13.12.6, and 14.0.2 allows users to be created via single sign on despite user cap being enabled
Credits
Thanks bingomzan for reporting this vulnerability through our HackerOne bug bounty program
