Verify each finding against the current code and only fix it if needed.

Inline comments:
In `@Projects/2-Intermediate/Website-Usage-Reviewer-Dashboard.md`:
- Line 23: Update the URL analysis sections (the user-input flow referenced at
Line 23 and the remote probing logic described around Lines 100–103 and 117) to
explicitly require SSRF and target-validation controls: enforce scheme
restrictions (only http/https), implement allowlist/denylist to block
private/loopback/metadata IP ranges and IPs resolved via DNS rebinding checks,
limit redirects and request concurrency, set strict request timeouts and maximum
response sizes, and validate final resolved host/IP before any active probe;
reference the URL input handling and active probe descriptions so the spec
mandates these protections for both passive analysis and any remote probing
steps.
- Around line 36-37: Add a new privacy/compliance subsection to the spec
covering analytics, weekly email digests, and persistent saved reports: define
required user consent flows for email digests and analytics tracking, specify
data retention periods and automated deletion rules, provide data export and
deletion (ERasure) procedures for saved reports, and mandate PII
minimization/pseudonymization for all stored metrics; reference the existing
items "User can receive a weekly email digest with updated metrics and new
recommendations" and "User can mark improvement suggestions as 'done' and track
their progress over time" when adding these requirements so implementers know
where consent, retention, deletion/export, and PII controls must be enforced.
- Line 72: Update the Core Web Vitals listing that currently reads "Core Web
Vitals score (LCP, FID, CLS)" to use the new metric name "INP" instead of "FID";
locate the string "Core Web Vitals score (LCP, FID, CLS)" in the document (or
the heading/line that contains "LCP, FID, CLS") and replace it with "Core Web
Vitals score (LCP, INP, CLS)" so the dashboard documentation reflects the March
2024 change from FID to INP.