Some of our users have begun to insert unapproved iframe code into their articles using the HTML content element in Composer. They are inserting iframes into articles without due diligence and technical oversight.
We are looking to either have a list of approved iframe embeds, or an option to outright block embedding iframe tags altogether through the HTML content element in Composer.
We still want to allow other HTML to be used.
Hi there, thanks for surfacing this! We'll consider this in the future as we continue to enhance Composer's field flexibility and other editorial capabilities.