Name of the Vulnerable Software and Affected Versions swagger-ui versions prior to 2.2.1

Description The issue allows HTML code in the swagger.apiInfo.description value without proper sanitization, which may allow attackers to execute arbitrary JavaScript. This can lead to Cross-Site Scripting (XSS) attacks.

Recommendations Upgrade to version 2.2.1 or later.