From 2f57464e8e6de691c65a6ae4617db13e1e77c69d Mon Sep 17 00:00:00 2001
From: Jorran de Wit <jorrandewit@outlook.com>
Date: Sat, 4 Feb 2017 12:23:06 +0100
Subject: [PATCH] Output messages with safe html

---
 scipost/templates/scipost/messages.html | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/scipost/templates/scipost/messages.html b/scipost/templates/scipost/messages.html
index 53699fac2..45cf6bfca 100644
--- a/scipost/templates/scipost/messages.html
+++ b/scipost/templates/scipost/messages.html
@@ -4,7 +4,7 @@
         <button type="button" class="close" data-dismiss="alert" aria-label="Close">
           <span aria-hidden="true">&times;</span>
         </button>
-        {{ message }}
+        {{ message|safe|escape }}
       </div>
     {% endfor %}
 </div>
-- 
GitLab