[Security] Fix XSS Vulnerability where content-type header wasn't explicitly set in API requests #5392

Job	Run time
Setup	6s
get-go-version / Determine Go toolchain version	6s
scan	1m 50s
	2m 2s

Provide feedback