Updated documentation for symlinks. Resolves #1812

jetty-documentation/src/main/asciidoc/configuring/security/serving-aliased-files.adoc

@@ -60,8 +60,8 @@ Unfortunately this approach denies all aliases, including symbolic links, which
 ==== Serving Aliases and Symbolic Links
 
 Not all aliases are bad nor should be seen as attempts to subvert security constraints.
-Specifically symbolic links can be very useful when assembling complex web applications, yet by default Jetty will not serve them.
-Thus Jetty contexts support an extensible `AliasCheck` mechanism to allow aliases resources to be inspected an conditionally served.
+Specifically, symbolic links can be very useful when assembling complex web applications.
+As such, Jetty contexts support an extensible `AliasCheck` mechanism to allow aliases resources to be inspected and conditionally served.
 In this way, "good" aliases can be detected and served.
 Jetty provides several utility implementations of the `AliasCheck` interface as nested classes with `ContextHandler`:
 
@@ -70,6 +70,11 @@ ApproveAliases::
 AllowSymLinkAliasChecker::
   Approve Aliases using the java-7 `Files.readSymbolicLink(path)` and `Path.toRealPath(...)` APIs to check that aliases are valid symbolic links.
 
+____
+[NOTE]
+By default, Jetty serves aliased files for implementations running on UNIX as Contexts are created with both the {JDURL}/org/eclipse/jetty/server/handler/AllowSymLinkAliasChecker.html[`AllowSymLinkAliasChecker`] and {JDURL}/org/eclipse/jetty/server/handler/ContextHandler.ApproveNonExistentDirectoryAliases.html[`ApproveNonExistentDirectoryAliases`] alias checkers.
+____
+
 An application is free to implement its own Alias checking.
 Alias Checkers can be installed in a context via the following XML used in a context deployer file or `WEB-INF/jetty-web.xml`: