[Misc] Explain why the code is safe

xwiki-platform-tools/xwiki-platform-tool-xmldoc-update-plugin/src/main/java/com/xpn/xwiki/tool/doc/AbstractDocumentMojo.java

@@ -125,6 +125,7 @@ protected XWikiDocument loadFromXML(File file) throws MojoExecutionException
 
             // get XML tree
             FileReader fr = new FileReader(file);
+            // This is not subject to XXE attacks since we control the input files and it's used only at build time.
             SAXReader reader = new SAXReader();
             Document domdoc;
             domdoc = reader.read(fr);