Allowing autoplay to execute may introduce malicious code to a system. Autoplay begins reading from a drive as soon as you insert media in the drive. As a result, the setup file of programs or music on audio media may start. By default, autoplay is disabled on removable drives, such as the floppy disk drive (but not the CD-ROM drive) and on network drives.
More info: Server: https://www.stigviewer.com/stig/windows_server_2016/2019-01-16/finding/V-73545
Under Computer Configuration / Administrative Templates / Windows Components / Autoplay Policies / Turn off Autoplay: Enable
Stig Server: https://www.stigviewer.com/stig/windows_server_2019/2020-06-15/finding/V-93377
Stig Desktop: https://www.stigviewer.com/stig/windows_10/2021-08-18/finding/V-220829