[MEDIUM] Pimcore Cross-site Scripting in Predefined Asset Metadata module in Settings

PKSA-xzkb-6y9q-v9p6 CVE-2023-1702 GHSA-6qjm-39vh-729w

Affected package: pimcore/pimcore

Affected version: <10.5.20

Reported by:
GitHub