Security release
- Fix XSS & SSRF vulnerabilities (thx to the XBOW team).
- Content Security Policy is now available and enable by default. CSP helps to prevent or minimize the risk of certain types of security threats.
If CSP is already enable on your server, you can set theCONTENT_SECURITY_POLICYenvironment variable tofalseto disable it at 2FAuth level.