[MEDIUM] Kirby vulnerable to Cross-site scripting (XSS) in the link field "Custom" type

PKSA-y4dk-fxrr-rv4m CVE-2024-27087 GHSA-63h4-w25c-3qv4

Affected package: getkirby/cms

Affected version: >=4.0.0,<4.1.1

Reported by:
GitHub