More readme fixes

LICENSE.md

@@ -1,3 +1,10 @@
+XPipe follows an open core model, which essentially means that the main application is open source while certain other components are not. This mainly concerns the features only available in the professional edition and the shell handling library implementation. Furthermore, some CI pipelines and tests that run on private servers are also not included in the open repository.
+
+The distributed XPipe application consists out of two parts:
+- The open-source core that you can find this repository. It is licensed under the Apache License 2.0.
+- The closed-source extensions, mostly for professional edition features, which are not included in the open repository. These are not licensed under the Apache License 2.0.
+
+Here is the license for the source code of this repository:
 
                                  Apache License
                            Version 2.0, January 2004

SECURITY.md

@@ -2,6 +2,6 @@
 
 Due to its nature, XPipe has to handle a lot of sensitive information. Therefore, the security, integrity, and privacy of your data has topmost priority.
 
-General information about the security approach of the XPipe application can be found on the website at https://xpipe.io/faq#security. If you're interested in security implementation details, you can find them at https://docs.xpipe.io/security.
+General information about the security approach of the XPipe application can be found on the website at https://xpipe.io/features#security. If you're interested in security implementation details, you can find them at https://docs.xpipe.io/security.
 
-You can report security vulnerabilities here in a confidential manner. We will get back to you as soon as possible if you do.
+You can report security vulnerabilities in this GitHub repository in a confidential manner. We will get back to you as soon as possible if you do.