[1.21.2] Update hedgedoc to 1.10.5 Full Changelog Fix the bundled healthcheck in the docker container GHSA-gmgw-rcmh-7x47 reports potential cross-site side-effects due to not applying sandboxing to iframes. GHSA-6wm6-3vpq-6qvv reports a possible CSRF vulnerability when using certain social login providers because the state parameter is not used and checked. Add enableUploads (CMD_ENABLE_UPLOADS) config option to restrict uploads to registered users, all users or Allow links to protocols such as xmpp, webcal or geo Switch from deprecated shortid to nanoid module, with 10 character long aliases in "public" links Ensure compatibility with Node 24 Protect user history from accidental or malicious deletion by adding a CSRF-like token Many enhancements in the documentation at docs.hedgedoc.org Ignore the healthcheck endpoint in the "too busy" limiter Send the referrer origin for YouTube embeddings due to their requirement