CSRF token
Enable generation of unique token that will be required for every POST request, thus increasing system security.
Note: third party applications may lose access to the system when CSRF tokens are enabled.
Also, it's a security setting, and off by default, since there's a chance some 3rd party plugins might carp about it.