Whitelist fonts by filename rather than font name

In #13313 (moved) we whitelisted fonts by file name. But as dcf points out, it would be ideal to whitelist bundled fonts only, using the font file path. As far as I can tell this will need to be implemented separately for Windows, Mac, and Linux.

To upload designs, you'll need to enable LFS and have an admin enable hashed storage. More information