[HIGH] Cross-site scripting (XSS) from unsanitized uploaded SVG files in Kirby

PKSA-nwq2-w6t5-fvfs CVE-2021-29460 GHSA-qgp4-5qx6-548g

Affected package: getkirby/cms

Affected version: <3.5.4

Reported by:
GitHub