To avoid XSS vulnerabilities, servers now validate file extensions and only allow
specific file types to be uploaded. Initially, this feature was disabled by default on
the server. However, it can be enabled using the following shared configurations:
- dam.config.restrictFileExtensions: Determines whether file extensions should be limited to those listed in the File Extension Code set. By default, this property is set to false.
- dam.config.restrictDoubleExtensions: Determines whether double-extension files are allowed. By default, this property is set to false.