Thank you for your reply!
I don’t see a reason why this can be a security risk, it’s just a simple link with a variable inside. With tools like PowerShell or other scripting language, this is normal behavior. For efficiency you will use variables much as possible.
I was already familiar with the Markdown workarround. Thanks!