docs: `.html, .py`

docs/patterns/fileuploads.rst

@@ -43,7 +43,7 @@ Why do we limit the extensions that are allowed?  You probably don't want
 your users to be able to upload everything there if the server is directly
 sending out the data to the client.  That way you can make sure that users
 are not able to upload HTML files that would cause XSS problems (see
-:ref:`xss`).  Also make sure to disallow `.php` files if the server
+:ref:`xss`).  Also make sure to disallow ``.php`` files if the server
 executes them, but who has PHP installed on his server, right?  :)
 
 Next the functions that check if an extension is valid and that uploads