HTML Unit 4.2.0 introduced a security fix:
https://htmlunit.sourceforge.io/changes-report.html#a4.2.0
"Prevent XMLHttpRequest from loading local resource for security reason."

Most browsers do this by default but allow an override. Can an override option please be added that allows for local files from the same directory and sub-directories to be loaded via XMLHttpRequest?