We don't need to open the menu to choose the "Grade" item, we can just click the button.

Use blanktarget option on all comments to prevent malicious links.

This fixes an exploit where you could alter the 'Content-Type' of the
request and bypass the case-sensitive check 'strstr'. For example,
setting it to 'application/x-www-FORM-urlencoded'. However, changing
this to use 'stristr' was also not an acceptable approach as you
could also bypass it by setting the value to 'multipart/form-data'.

Turn on the forceclean config setting when a user is logged in as a
different user. This is a precautionary measure, which forces all
user submitted content to be cleaned of JavaScript before rendering
it to the logged in as user.

There are possibly some further improvements that can be made to:
- export_discussion_data
- export_all_posts

These courses are passed through to the course_summary_exporter which
requires a category id in each course record.