Security announcements

MSA-13-0036: Incorrect headers sent for secured resources