#description is only XSS admin filtered by default. This makes it akin to #markup, #prefix and #suffix - but it is not the same at all. Let's make it auto-escape like most other things.
Needs work
11.0 π₯
render system
Issue summaries save everyone time if they are kept up-to-date. See Update issue summary task instructions.
Not all content is available!
It's likely this issue predates Contrib.social: some issue and comment data are missing.
This came up as a daily BSI target
This definitely appears to be relevant, from checking a few of the ['#description'] instances in core.
This will need an issue summary update but @alexpott would you say this also just needs a reroll?