[MEDIUM] TinyMCE Cross-Site Scripting (XSS) vulnerability using noneditable_regexp option

PKSA-kxv7-w7hg-zj9k CVE-2024-38356 GHSA-9hcv-j9pv-qmph

Affected package: tinymce/tinymce

Affected version: >=7.0.0,<7.2.0|>=6.0.0,<6.8.4|<5.11.0

Reported by:
GitHub