Previously, formio.js was sanitizing the HTML component's content at the end of get content(), but since interpolate() method uses translateHTMLTemplate utility function that creates a DOM element and sets a content inside it, we need to sanitize the content before it goes there.
Dependencies
This PR depends on the following PRs from other Form.io modules: ...
How has this PR been tested?
I added automated tests to cover [all/the following] cases, including ...
Checklist:
[ ] I have commented my code, particularly in hard-to-understand areas
[ ] I have made corresponding changes to the documentation (if applicable)
[ ] My changes generate no new warnings
[ ] My changes include tests that prove my fix is effective (or that my feature works as intended)
[ ] New and existing unit/integration tests pass locally with my changes
[ ] Any dependent changes have corresponding PRs that are listed above
Link to Jira Ticket
https://formio.atlassian.net/browse/FIO-7544
Description
What changed?
Previously, formio.js was sanitizing the HTML component's content at the end of get content(), but since interpolate() method uses translateHTMLTemplate utility function that creates a DOM element and sets a content inside it, we need to sanitize the content before it goes there.
Dependencies
This PR depends on the following PRs from other Form.io modules: ...
How has this PR been tested?
I added automated tests to cover [all/the following] cases, including ...
Checklist: