From aec5c2d113ecae35a9158ac53d49a4c967e5815c Mon Sep 17 00:00:00 2001
From: adelaunay <delaunay.alexandre@gmail.com>
Date: Thu, 24 Nov 2022 15:32:35 +0100
Subject: [PATCH] avoid xss in rssfeed content

---
 src/RSSFeed.php | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/src/RSSFeed.php b/src/RSSFeed.php
index 6b86949d8f5..3333e3d061d 100644
--- a/src/RSSFeed.php
+++ b/src/RSSFeed.php
@@ -856,7 +856,7 @@ public function showFeedContent()
                     'title'     => $item->get_title(),
                     'link'      => URL::sanitizeURL($item->get_permalink()),
                     'timestamp' => Html::convDateTime($item->get_date('Y-m-d H:i:s')),
-                    'content'   => $item->get_content()
+                    'content'   => RichText::getSafeHtml($item->get_content()),
                 ];
             }
         } else {