[craftcms/cms] Craft CMS Cross site Scripting vulnerability

Craft CMS 4.2.0.1 is vulnerable to Cross Site Scripting (XSS) via src/helpers/Cp.php.

References

• https://nvd.nist.gov/vuln/detail/CVE-2022-37248
• https://github.com/craftcms/cms/commit/cedeba0609e4b173cd584dae7f33c5f713f19627
• https://labs.integrity.pt/advisories/cve-2022-37248/
• https://github.com/craftcms/cms/blob/develop/CHANGELOG.md#421—2022-08-09
• https://github.com/craftcms/cms/blob/3.7.55.1/src/helpers/Cp.php
• https://github.com/craftcms/cms/blob/4.0.0-RC1/src/helpers/Cp.php
• https://github.com/advisories/GHSA-wxvf-839f-jqmh