[HIGH] Cross-site Scripting via uploaded assets

PKSA-jwp2-xxh9-t8xp CVE-2023-48701 GHSA-8jjh-j3c2-cjcv

Affected package: statamic/cms

Affected version: >=4.0.0,<4.36.0|<3.4.15

Reported by:
GitHub