Retlehs

**Name of the Vulnerable Software and Affected Versions** Roots soil Plugin versions prior to 4.1.1 **Description** A problematic issue was found in the Roots soil Plugin, affecting the `language attributes` function of the file `src/Modules/CleanUpModule.php`. The manipulation of the `language` argument leads to cross-site scripting. It is possible to launch the attack remotely. **Recommendations** To address this issue, upgrade to version 4.1.1. As a temporary workaround, consider restricting access to the `language attributes` function until the upgrade is applied.