Can someone explain what this means? My first reaction is that it sounds like it may create a new attack surface for the browser extension…
Shared state refers to both shared login state and shared unlock state. That is, logging into your web vault, will log you into your browser extension, and vice versa, and, unlocking/locking one of them would unlock/lock both.