When you run an android phone with an unlocked bootloader one of your main security concerns has to be physical device security.
Even while your data is encrypted, on Android your OS is not and therefore someone with physical access to your device can trivially inject malware that runs with system permissions.
Same is true for the kernel of your notebook and desktop computer when it doesn't run "secureboot" or a comparable security measure.
Follow
@sheogorath ehhhh with veracrypt you can encrypt the entire system drive as well and keep the bootloader on a usb, so it doesnt nwed to be an issue per say on desktop systems
@blacklight447 I would consider this a comparable security measure to secureboot. As it tries to actively prevent the manipulation of the boot partition using a technical measure. And it's far from being a standard setup.