User::fromVars in class ticket was the root. Eventually, in
DynamicForm::getDynamicFields(), isset($this->id) was used to detect
unsaved, new forms that have not been committed to the database; however,
the isset() method was not implemented for the ORM.

In both the client and staff interfaces, where the URL and request
parameters were echo'd back without any escaping

That patch introduced a bug where the list of dynamic fields for a form is
always empty

New ticket by staff would cause the %{company.name} variable to be
incorrectly replaced as the user's name in email templates.

Otherwise, no column will be added to the %ticket__cdata table and the
ticket queue pages will be crashed (empty).

Instead, previously, a maxlength of zero effectively disabled the field,
because it prevented any user input into the field.

function splitHeaders updated in order to correctly parse mail header lines
starting with tabs

Otherwise, if a decoded email name has a comma in it, for instance

From: =?utf-8?B?RnJ5ZGVubHVuZCBIeW3DuGxsZXIsIEJldHRpbmE=?=
    <bettina.frydenlundhymoller@domain.com>

The address list will be parsed incorrectly since the comma has an ambiguous
significance. Usually, the personal name would be quoted; however, since it
is encoded, there is no need to quote it.

Previously, the display of the button was incorrect and more than one button
might have been displayed.

htmLawed stripped/discarded <div> tags nested inside inline tags such as
<a>. The previous replacement engine would replace <img> tags with <div>
tags and would cause the HTML to be corrupted by htmLawed.

This patch uses <span> tags which have CSS rules to be displayed as
inline-blocks. This should stay truer to the normal sizing and placement of
the original <img> tag.

As suggested by: https://github.com/osTicket/osTicket-1.8/issues/755

Send an alert to assigned staff/team on an internal note even when a ticket is
closed.

Add ability to disable canned responses
Fix team drop down selection
Remove priority escalation setting in SLA page (implementation is on todo
        list)

Remove usage of preg_match_all for large strings

Sometimes an MTA may just send back the headers of the original message
rather than the entire original message. Such an email will have a
`text/rfc822-headers` part which will be the complete headers of the
original message.

Without this patch, osTicket will create a new ticket for the bounce message
rather than attaching the new internal note to the existing ticket.

References:
https://tools.ietf.org/html/rfc1892

Consider closed date to determine ticket's last activity date. The net effect is closed tickets queue will be sorted by closed date.