Yes, in the sense that you are responsible to update the Docker container and often this can lead to vulnerable containers. No, in the sense that it is much easier to scan for dependencies inside a Docker container and identify vulnerabilities. Also most containers are based on Linux distribution, so those distribute the security fixes for specific libraries. All you have to is update the base image.
It would be so cool to be able to generate these with AI models from OSM data. I did some experiments with Stable Diffusion and they turned out okay, but you have to decide between accuracy and style.