Update docs/infrastructure_and_maintenance/security/security_checklis…

…t.md

Co-authored-by: Magdalena Dziadosz <[email protected]>

docs/infrastructure_and_maintenance/security/security_checklist.md

@@ -98,7 +98,8 @@ See [Security advisory: EZSA-2020-002.](https://developers.ibexa.co/security-adv
 
 The `ibexa.site_access.config.default.io.file_storage.file_type_blacklist` setting defined in the config file `src/bundle/Core/Resources/config/default_settings.yml` in the Core bundle lists filename extensions for files that shouldn't be uploaded. Attempting to upload such files results in an error message. It exists to prevent uploading files that might be executed on the server, a Remote Code Execution (RCE) vulnerability. (There are also other prevention measures in place, like using the web server configuration to block execution of uploaded scripts, see the next point.)
 
-You should adapt this list to your needs. Note that `svg` images are blocked because they may contain JavaScript code. If you opt to allow them, make sure you take steps to mitigate this risk.
+You should adapt this list to your needs. Note that `svg` images are blocked because they may contain JavaScript code.
+If you opt to allow them, make sure you take steps to mitigate the risk.
 
 The default list of blocked file types contains: `hta htm html jar js jse pgif phar php php3 php4 php5 phps phpt pht phtml svg swf xhtm xhtml`