Release Enhancement
Session Cookies set to HTTP Only
This fix ensures that session cookies are now configured with the HttpOnly attribute, mitigating the risk of client-side JavaScript accessing sensitive cookie data. This change helps protect against XSS attacks that could otherwise lead to session hijacking.