At least in 1.5, the "Safe HTML" plugin has no support for editing, overriding, or updating the HTML sanitization policy. A custom plugin must be built instead. See
Version 1.6 and later
See GitHub releases.
Version 1.5 (June 8, 2016)
- JENKINS-31616 "Safe HTML" vulnerable to protocol-relative form action – Thank you Daniel Beck.