If one party is using webmail you are essentially trusting the server anyway. A webmail server is excellently placed to do a MITM attack. And WKD does avoid having to trust anything except the end servers, which are at least consciously chosen by the people.
So, like Autocrypt, WKD a step in the right direction, and later versions could add more security.