In theory, this should work very well in the cloud. For example, one can use AWS S3 to store the static content, AWS CloudFront CDN for rapid delivery of content, and AWS API Gateway + Lambda for RESTful APIs, with AWS DynamoDB for persistent state. This setup would be entirely serverless.
This article, “Docker & AppArmor: 30.000 foot view”, contains basic examples illustrating the interaction between Docker and SELinux :
This article describes a recent vulnerability with Docker and RedHat’s fix: