```release-note:improvement
xds: Envoy now inserts x-forwarded-client-cert for incoming proxy connections
```
