In the October 22 release of Firefox 70 disable the display of authorization requests initiated from iframes loaded from another domain (cross-origin). Change to block some abuses and move to a model in which permissions are requested only from the primary domain for the document, which is shown in the address bar.
Another noteworthy change in Firefox 70 Stop rendering the contents of files uploaded via ftp. When opening resources via FTP, the file will now be forced to be downloaded to disk, regardless of the file type (for example, when opening via ftp, images, README and html files will no longer be displayed).
In addition, in the new version in the address bar an indicator of granting access to the location, which will allow you to visually assess the activity of the Geolocation API and, if necessary, revoke the site's right to use it. So far, the indicator has only been displayed before permissions are granted and if the request is denied, but disappears when accessing the Geolocation API. Now the indicator will inform the user about the presence of such access.
Source: opennet.ru