Monkey patch possible XSS vulnerability in ActionView (CVE-2020-5267) for Rails 5.1

Description

CVE-2020-5267 Possible XSS vulnerability in ActionView

We're not on Rails 5.2 or 6.0, so we need to use the monkey patch provided in https://github.com/advisories/GHSA-65cv-r6x7-79hv

Testing
Make sure you can still add or edit a bookmark as usual with JavaScript enabled.

Environment

None

Assignee

redsummernight

Reporter

Sarken

Roadmap

Bookmarks

Priority

High

Affects versions

Fix versions

Components

BackEnd

Difficulty

Medium

Required Access Level

None

Milestone

Internal 0.9
Configure