Mastodon: Emojis showing black on Firefox from 52 to 57

Are you using a different content security policy than the one suggested in the production guide?

Has the security policy changed since v1.6?
This is an upgrade from 1.6 to 2.0 where everything works as normal but apart from emojis issue only with Firefox. With all other browsers (not considering Edge in the category) it works perfectly.

Is there something specific in the security policies that could affect only Firefox from 52 to 57?

I don't believe the security policy itself has changed since then but there is a new nginx location that includes emoji https://github.com/tootsuite/documentation/blob/master/Running-Mastodon/Production-guide.md#nginx-configuration
location ~ ^/(emoji|packs|system/accounts/avatars|system/media_attachments/files) { add_header Cache-Control "public, max-age=31536000, immutable"; try_files $uri @proxy; }
I don't know whether or not missing this location would cause your issue though.

this is caused by not having style-src: unsafe in your CSP header. emoji SVGs use inline styles, which for some reason are blocked by some CSP setups

Thanks @nightpool that was the issue.
I totally forgot to check the browser console to see that the CSP rule was blocking the SVGs as they are treated as script.

adding to style-src 'unsafe-inline' fixed the issue.
Thanks again.