Viur-core

- fix: handling alpha channel within thumbnail generation if icc profile is present (1006)
- fix: Broken use of tasks emulator in combination with the app_server (1003)
- fix: Undocumented and uninitialized `conf["viur.user.google.gsuiteDomains"]` (1002)

- feat: Provide `UserPassword.on_login()` hook (987)
- fix: disable cookie's `SameSite` and `Secure` for local server (961)

- fix: Callable task `TaskVacuumRelations` (963)
- fix: `exclude_from_indexes` has to be a `set` (964)
- fix: kwargs checks must be underline (`_`) prefixed as well (962)
- fix: Modules using `property` crash on `_update_methods` (952)
- fix: Support `cache`-decorator for both functions and `Method`-instance (948)
- fix: Invalid `maxLength` check in `StringBone` (941)

- fix: Update dependencies, urllib3 CVE-2023-45803 (938)
- fix: User-module default customAction triggers require skey (939)

- fix: `access` in method description must not be a generator object (936)
- fix: Always set `Secure` mode for session cookie (931)

- fix: Raise an `AttributeError` in case of `KeyError` in `SkeletonInstance.boneMap` (930)
- fix: refactor `pathlist` to `path_list` (928)
- feat: Add user admin login context (901)