sanitize-html, AllowedTags Bypass via Entity Decoding, Critical

Listen to this Post

How CVE works (around 20 lines):

Commit 49d0bb7 introduced a regression in sanitize-html. The vulnerable code at `packages/sanitize-html/index.js:569-573` assumes `htmlparser2` does not decode entities inside raw text elements like `