This is an active concern area. Recent news from the US military has had issues since their domains are .mil and some of Mali's domains are .ml. They have some custom code that has some check "are you sure". Some email companies like Protonmail also have optional timeout before actually sending the email
Same goes for accidentally typing a url instead of the desired, although that might be more dangerous, depending on the host OS and privileges and if the typoed url contains malware
Thanks Syndey, for the summary