[MEDIUM] Concrete CMS Cross-site Scripting via Survey Blocks

PKSA-b5y6-zh9m-gksf CVE-2021-28145 GHSA-7388-7vq2-m4f4

Affected package: concrete5/concrete5

Affected version: <8.5.5

Reported by:
GitHub