If anyone is curious on how this can be abused, here's my "There's no place like 169.254.169.254 - (Ab)using cloud metadata URLs" slides [1] and talk [2] from 2019.
tl;dr - misconfigured reverse proxies allowed cloud metadata URL access across the bigger cloud providers.