Update general/development/policies/security/crosssite-request-forgery.md

Co-authored-by: Andrew Lyons <andrew@nicols.co.uk>

Author: kabalin

general/development/policies/security/crosssite-request-forgery.md

@@ -41,7 +41,7 @@ Therefore, the request to delete a user is actually something like below and the
 
 :::info
 
-**sesskey** should not be confused with Moodle Session ID, which a PHP session cookie responsible for session continuity (remaining logged in).
+The `sesskey` should not be confused with Moodle Session ID, which a PHP session cookie responsible for session continuity (remaining logged in).
 
 :::