Similar to login pages and preferences, I think this page should also set disallowUserJs() so that 'site' and 'user' modules are not loaded here.
Especially because this output context is very unlike other skins. This don't work as expected. I ran into this multiple times when dealing with wikis where site scripts were a bit broken.
Aside from making sure this neutral and light-weight context works properly without the page weight of site scripts (which don't expect to run on this page). It also makes sure the page stays safe and secure so that people can reach it to get help =even if things are broken at the moment.