Constructor2019

**Name of the Vulnerable Software and Affected Versions** GitLab EE versions 8.14 through 12.5 GitLab EE version 12.4.3 GitLab EE version 12.3.6 **Description** The issue allows for XSS in group and profile fields. **Recommendations** For GitLab EE versions 8.14 through 12.5, update to a version outside of this range to resolve the issue. For GitLab EE version 12.4.3, update to a newer version to mitigate the risk. For GitLab EE version 12.3.6, update to a newer version to mitigate the risk.