orchardcore is vulnerable to Improper Neutralization of Input During Web Page Generation (‘Cross-site Scripting’) References https://nvd.nist.gov/vuln/detail/CVE-2022-0159 https://github.com/orchardcms/orchardcore/commit/4da927d39a49138527c30db09c962ff706f95202 https://huntr.dev/bounties/00937280-e2ab-49fe-8d43-8235b3c3db4b https://github.com/advisories/GHSA-6w5m-jgc5-8cgc