add CSP & CORS white list support

en/links/index.html

@@ -218,10 +218,6 @@ TTS</p>
 play video fullscreen. if videourl is empty, then make following requestFullscreen() work.</p>
 </li>
 <li>
-<p>i:5g[videourl]<br>
-play video in external player</p>
-</li>
-<li>
 <p>i:5h[?postfix:|/regex/replacement:][url]<br>
 force html for [url] visiting</p>
 <ul>
@@ -238,6 +234,10 @@ Use the existing tab for the url with possible different url hash part.</p>
 if [string] is file url, then send the file/folder to network, otherwise send [string] to network.</p>
 </li>
 <li>
+<p>i:5p[videourl]<br>
+play video in external player</p>
+</li>
+<li>
 <p>i:60[path]:[url]<br>
 If existing local file, then open it or visit the [url].</p>
 </li>