Hi,
I recommend shiftfs.
It is in use and activated by default in Ubuntu, it is considered stable.
See for example: Trying out `shiftfs` - #58 by brauner
“Documentation” is in the Forum (for now):
Regarding Security of shiftfs:
Note: This explanation is for shiftfs!
Not really, It’s more complicated than that.
Users from the container will not have host access.
But a root or sudo user inside a container can set the uid of a file on the host and then a user on the host could use it to get root access.
But there are ways to prevent it.
See:
Trying out shiftfs - comment 48
Trying out shiftfs - comment 54