Security comment for unsafe

[vonox7]

There is no explanation for why "unsafe" is considered "not safe." A developer who is unaware of the implications might not realize that this is related to XSS and currently has no straightforward way of figuring this out.

This comment provides:

• An explanation of what is happening.
• The use of technical terms (XSS) to allow users to search for more relevant information.
• Two action items.

[e5l]

Hey @vonox7, thanks for the PR. That's a good note, LGTM