Board Thread:Support Requests - Getting Technical/@comment-1526346-20180118181414/@comment-168424-20180119000803

Andrewds1021 wrote:

Which goes back to the security issue; as stated on the page. Unfortunately, it doesn't appear to offer an explanation for how it was decided which tags to allow and which to disallow when that is set to false.

Yeah, it would be nice if there were a more detailed explanation. For IMG, I'm guessing that they don't parse the src attrib for exploit type extensions (or other exploitable attribs), so it's easier just to disable it.