add CSP & CORS white list support

zh/links/index.html

@@ -208,10 +208,6 @@ TTS</p>
 play video fullscreen. if videourl is empty, then make following requestFullscreen() work.</p>
 </li>
 <li>
-<p>i:5g[videourl]<br>
-play video in external player</p>
-</li>
-<li>
 <p>i:5h[url]<br>
 force html for url</p>
 </li>
@@ -224,6 +220,10 @@ force html for url</p>
 if [string] is file url, then send the file/folder to network, otherwise send [string] to network.</p>
 </li>
 <li>
+<p>i:5p[videourl]<br>
+play video in external player</p>
+</li>
+<li>
 <p>i:60[path]:[url]<br>
 如果本地文件存在就打开，否则访问远程url</p>
 </li>