Update CHANGELOG.md for 8.16.8

[ci skip]

3 files changed, 5 insertions, 8 deletions

diff --git a/CHANGELOG.md b/CHANGELOG.md
index 21b2871734e..6fb2fa00579 100644
--- a/CHANGELOG.md
+++ b/CHANGELOG.md
@@ -2,6 +2,11 @@
 documentation](doc/development/changelog.md) for instructions on adding your own
 entry.
 
+## 8.16.8 (2017-03-19)
+
+- Only show public emails in atom feeds.
+- To protect against Server-side Request Forgery project import URLs are now prohibited against localhost or the server IP except for the assigned instance URL and port. Imports are also prohibited from ports below 1024 with the exception of ports 22, 80, and 443.
+
 ## 8.16.7 (2017-02-27)
 
 - No changes.
diff --git a/changelogs/unreleased/28058-hide-emails-in-atom-feeds.yml b/changelogs/unreleased/28058-hide-emails-in-atom-feeds.yml
deleted file mode 100644
index e0e826a67f8..00000000000
--- a/changelogs/unreleased/28058-hide-emails-in-atom-feeds.yml
+++ /dev/null
@@ -1,4 +0,0 @@
----
-title: Only show public emails in atom feeds
-merge_request:
-author:
diff --git a/changelogs/unreleased/ssrf-protections.yml b/changelogs/unreleased/ssrf-protections.yml
deleted file mode 100644
index 8d803738009..00000000000
--- a/changelogs/unreleased/ssrf-protections.yml
+++ /dev/null
@@ -1,4 +0,0 @@
----
-title: To protect against Server-side Request Forgery project import URLs are now prohibited against localhost or the server IP except for the assigned instance URL and port. Imports are also prohibited from ports below 1024 with the exception of ports 22, 80, and 443.
-merge_request:
-author: