diff --git a/changelog/1.39.0.md b/changelog/1.39.0.md
new file mode 100644
index 000000000..e7eeefb2b
--- /dev/null
+++ b/changelog/1.39.0.md
@@ -0,0 +1,33 @@
+# 1.39.0
+
+### Breaking changes ❗
+
+There are no breaking changes in 1.39.0.
+
+### Features ✨
+
+- Added the ability to set the maximum age for an API key in the Admin panel.
+- Added a toggle to the OIDC provider in the Admin panel to disable automatic
+  user creation. When toggled on, users will have to be manually created by an
+  administrator with an email that matches the value provided by the 'email'
+  field in the OIDC payload. The login type of the user must be set to OIDC
+  in order to successfully login.
+- Added a logout action to the audit log to track user logouts.
+- Removed the hard limit on total number of images in a deployment.
+
+### Bug fixes 🐛
+
+- Fixed an issue where users couldn't install the code-server PWA
+  (Progressive Web App).
+- Fixed various paths where API Keys were not being audited.
+- Fixed an issue where deleted users were not shown in the audit log.
+- Fixed various UI inconsistencies around images and image tags.
+- Fixed an issue that could cause the dashboard to unnecessarily re-render
+  multiple times.
+
+### Security updates 🔐
+
+- Fixed an issue where exporting audit logs could be vulnerable to a CSV
+  injection.
+- Websocket clients are now rejected if they supply an invalid
+  'sec-websocket-key' header value.
diff --git a/manifest.json b/manifest.json
index c20030996..8701b6b16 100644
--- a/manifest.json
+++ b/manifest.json
@@ -948,6 +948,12 @@
       "path": "./changelog/index.md",
       "icon_path": "./assets/images/icons/paper.svg",
       "children": [
+        {
+          "path": "./changelog/1.39.0.md",
+          "children": [],
+          "title": "1.39.0",
+          "description": "Released on 01/25/2023"
+        },
         {
           "path": "./changelog/1.38.0.md",
           "children": [