Not to be a Debbie Downer, but this new "feature" is a security hole:
"Some pages (admin area, login, and checkout pages) use HTTPS. Let's force all other pages to use HTTP."
If you are already authenticated, you should ALWAYS stay on a secure channel as the cookie used for your session and authentication status is always passed on each request. This cookie should be set to secure="true" to force the need for a secure channel or else the browser won't send it. If you don't do this, it can be easily snatched and replayed.
This is a pretty big security hole and I won't be upgrading until this is actually fixed. I understand the reasoning behind it, but it was a mistake to make this feature available.
Please see the OWASP site on Cookie and Session Management:
https://www.owasp.org/index.php/OWASP_Application_Security_FAQ#Cookies_and_Session_Management