[FLINK-35532][Runtime/Web Frontend] Prevent Cross-Site Authentication (XSA) attacks on Flink dashboard
diff --git a/flink-runtime-web/web-dashboard/src/app/pages/job-manager/profiler/job-manager-profiler.component.html b/flink-runtime-web/web-dashboard/src/app/pages/job-manager/profiler/job-manager-profiler.component.html
index 16429b4..5df8c46 100644
--- a/flink-runtime-web/web-dashboard/src/app/pages/job-manager/profiler/job-manager-profiler.component.html
+++ b/flink-runtime-web/web-dashboard/src/app/pages/job-manager/profiler/job-manager-profiler.component.html
@@ -107,7 +107,11 @@
           <ng-template #titleTemplate>
             <span>
               Please refer to
-              <a href="https://github.com/async-profiler/async-profiler/wiki">
+              <a
+                href="https://github.com/async-profiler/async-profiler/wiki"
+                target="_blank"
+                rel="noopener noreferrer"
+              >
                 async-profiler's wiki
               </a>
               for more detailed info of this feature.
diff --git a/flink-runtime-web/web-dashboard/src/app/pages/task-manager/profiler/task-manager-profiler.component.html b/flink-runtime-web/web-dashboard/src/app/pages/task-manager/profiler/task-manager-profiler.component.html
index 405f281..e9cef22 100644
--- a/flink-runtime-web/web-dashboard/src/app/pages/task-manager/profiler/task-manager-profiler.component.html
+++ b/flink-runtime-web/web-dashboard/src/app/pages/task-manager/profiler/task-manager-profiler.component.html
@@ -107,7 +107,11 @@
           <ng-template #titleTemplate>
             <span>
               Please refer to
-              <a href="https://github.com/async-profiler/async-profiler/wiki">
+              <a
+                href="https://github.com/async-profiler/async-profiler/wiki"
+                target="_blank"
+                rel="noopener noreferrer"
+              >
                 async-profiler's wiki
               </a>
               for more detailed info of this feature.