Request header validation and mod_security update

• [Security] Apply more strict request header validation.
• [Security] Update libmodsecurity to v3.10.
• [Tuning] Lift default memory limit for external applications.
• [Improvement] Add private cache session cookie detection for WordPress.
• [Bug Fix] Address bug in converting x-forwarded-scheme to x-forwarded-proto.