Update CHANGELOG for #385 (#387)

Author: bflad

.changes/unreleased/NOTES-20240307-092813.yaml

@@ -0,0 +1,8 @@
+kind: NOTES
+body: 'all: Upgraded google.golang.org/protobuf dependency, which includes a fix for
+  CVE-2024-24786. While the fixed feature is not used in this Go module, this
+  upgrade may silence security vulnerability scanner reports that are based purely
+  on dependency versions.'
+time: 2024-03-07T09:28:13.859378-05:00
+custom:
+  Issue: "385"