Lack of user input validation in the file upload functionality of Open Notebook v1.8.3 allows the application user to create or modify files on the docker container via path traversal.CreditsCERT-EUReferenceshttps://github.com/lfnovo/open-notebook/security/advisories/GHSA-x4q2-89g5-594v
