Name of the Vulnerable Software and Affected Versions: No specific software or versions mentioned, use: (affected versions not specified)

Description: The issue concerns the rich text editor, which fails to escape attribute data when previewing custom tags, allowing for XSS attacks. This can be exploited by users with access to editing rich text content to attack other editors. The frontend content view is not affected.

Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.