In all reality, script tags don't seem to work, and I couldn't really figure out how else to abuse this without putting obscene amounts of data into the field (like a large image or something), so I actually don't think it's that big of an issue, also, the html will show up raw in the card detail modal, so if someone makes a really large card or something, it should be easy to delete.
This was unintentional, but actually seems useful for legitimate uses, such as using anchors or images relevant to the story.
Opps... Don't worry, it's a feature
In all reality, script tags don't seem to work, and I couldn't really figure out how else to abuse this without putting obscene amounts of data into the field (like a large image or something), so I actually don't think it's that big of an issue, also, the html will show up raw in the card detail modal, so if someone makes a really large card or something, it should be easy to delete.
This was unintentional, but actually seems useful for legitimate uses, such as using anchors or images relevant to the story.
Note: Export page will also have raw html