update readme

README.md

@@ -71,6 +71,8 @@ ENTRYPOINT ["dotnet", "test.dll"]
 
 ### Security implications
 
+#### Webserver and certificates
+
 This images uses the system provided by Microsoft to generate a development certificate and uses the [Kestrel](https://learn.microsoft.com/en-us/aspnet/core/fundamentals/servers/?view=aspnetcore-9.0&tabs=windows) webserver.<br/>
 In previous .NET versions it was not recommended to expose Kestrel directly to the internet, now Microsoft claims you can do that if you want so.<br/>
 However you never should use the included development certificate included in this image when doing so.
@@ -83,4 +85,5 @@ If you want to directly expose the Kestrel webserver use the following environme
 The certificate included by default (generated through the _dotnet dev-certs_ command) is not really suited for production environments.
 
 In practice it's much easier to expose the server through a proxy to the public (hence the recommended method). 
-Depending on your use-case you event might consider to use docker networking in order to accomplish proper isolation.
+Depending on your use-case you event might consider to use docker networking in order to accomplish proper isolation.
+