[MEDIUM] The Preview plugin in CKEditor allows Cross-site scripting (XSS)

PKSA-9nwm-d5bx-39tf CVE-2014-5191 GHSA-v27h-j97p-wqmx

Affected package: ckeditor/ckeditor

Affected version: <4.4.3

Reported by:
GitHub