Fix pushed to branch user/jeffdavis/lp1822630-browse-xss in the security repo. Looks like a simple case of a CGI param being embedded in HTML without being sanitized with "param | html".
Fix pushed to branch user/jeffdavis/ lp1822630- browse- xss in the security repo. Looks like a simple case of a CGI param being embedded in HTML without being sanitized with "param | html".