Changes in libsoup from 3.6.6 to 3.7.1:

* Add support for the `zstd` content encoding [Patrick Griffis]
* Add `SoupWebsocketConnection:max-total-message-size` to limit incoming WebSocket message sizes [Ignacio Casal Quinteiro, Michael Catanzaro]
* Harden cookie and cookie jar handling:
    * Ignore cookies impersonating prefixed cookies, as well as cookies with empty names and values [Patrick Griffis]
    * Annotate `SoupCookieJar::changed` arguments as nullable [Corentin Noël]
    * Add `SoupCookieJarDB:max-size` to limit the file size of the database [Filipe Norte]
    * Expose `SoupCookieJarDB` construction failures via `GInitable`, and rename `SoupCookieJarDBError` to `SoupCookieJarError` [Patrick Griffis]
    * Avoid sending cookies to HTTP proxies for HTTPS requests [Carlos Garcia Campos]
* Tighten HTTP parsing and validation:
    * Reject multiple `Content-Length` headers and tighten `Content-Length` validation [Carlos Garcia Campos, Samuel Dainard]
* websocket: Fix an out-of-bounds read when reading an unmasked frame, and make `Sec-WebSocket-Protocol` matching case-sensitive [Mike Gorse, Diego Pino Garcia]
* http2: Fix graceful `GOAWAY` handling and several crashes and read/write edge cases [Carlos Alberto Lopez Perez, Eugene Mutavchi, Carlos Garcia Campos, Patrick Griffis, Michael Catanzaro]
* auth: Drop unused automatic NTLM auth and reject excessively long NTLM passwords [Michael Catanzaro, Mike Gorse]
* http1: Improve chunked request parsing [Carlos Garcia Campos]