Cross-Site Scripting in form component

PKSA-dt28-xcfy-z6q8

Affected package: typo3/cms

Affected version: >=6.2.0,<6.2.18

Reported by:
FriendsOfPHP/security-advisories