Piccolo-admin

-----

When downloading a CSV file from the row listing page, you can now specify
which columns you want to download.

-------------------------------------------------------------------------------

-----

On the add row and edit row forms, the save button is now temporarily disabled
after being pressed (until the API call finishes). This is to prevent a user
from accidentally clicking the button multiple times. Thanks to sinisaos for
helping with this.

-------------------------------------------------------------------------------

-----

Improved the array widget for arrays of ``Time`` / ``Date`` / ``Timestamp`` /
``Timestamptz``.

-------------------------------------------------------------------------------

-----

Fixed a bug with array inputs in custom forms (thanks to sinisaos for this).

-------------------------------------------------------------------------------

-----

Added CSP (Content Security Policy) middleware to stop malicious SVG files from
executing JavaScript. This was possible if:

* Local media storage was enabled
* SVG uploads were allowed from untrusted sources
* When viewing an uploaded SVG in Piccolo Admin, if you open the SVG in a new
tab then it's possible for JavaScript embedded in the SVG file to run.

It's recommended that you upgrade to this version. Thanks to Skelmis for this.

-------------------------------------------------------------------------------

-----

Fixed a bug with the bulk update button not being translated.

Thanks to jrycw for reporting the issue, and sinisaos for the fix.

-------------------------------------------------------------------------------