[MEDIUM] TYPO3-CORE-SA-2022-011: By-passing Cross-Site Scripting Protection in HTML Sanitizer

PKSA-rwrz-v1bh-34yt CVE-2022-36020 GHSA-47m6-46mj-p235

Affected package: typo3/cms-core

Affected version: >=10.0.0,<10.4.32|>=11.0.0,<11.5.16

Reported by:
GitHub, FriendsOfPHP/security-advisories