This endpoint acts basically the same as the /search/ endpoint. The only difference is that this the public endpoint does not require requests to be signed with using API-Secret.
That means, they are publically available. Because of that, we limit the fields returned in the responses. To achieve this, customers can define a whitelist of fields that should be returned.