public class XContentTypeOptionsNoSniffFilter
This exists solely to deal with a security vulnerability in Internet Explorer: JRA-28879
IE can be tricked into parsing a text/html page as a stylesheet if it contains certain characters. Hence, a JIRA page
can be loaded as a stylesheet on an external, malicious site and voila, XSS.