[MEDIUM] Kirby .dev domains and some reverse proxy setups were treated as local

PKSA-ds8j-v9vb-tdbw CVE-2020-26253 GHSA-2ccx-2gf3-8xvv

Affected package: getkirby/cms

Affected version: >=3.0.0,<3.3.6

Reported by:
GitHub