[MEDIUM] Cross-Site Scripting in Form Framework

PKSA-3886-d5zt-qwrh GHSA-rv8r-8mh5-5376

Affected package: typo3/cms-core

Affected version: >=8.0.0,<8.7.23|>=9.0.0,<9.5.4

Reported by:
GitHub, FriendsOfPHP/security-advisories