- Issue created by @prudloff
- πΊπΈUnited States smustgrave
Reading up on srcdoc on https://developer.mozilla.org/en-US/docs/Web/API/HTMLIFrameElement/srcdoc and the example
iframe.srcdoc = `<!doctype html><p>Hello World!</p>`; document.body.appendChild(iframe);
Shows HTML being used so would agree it probably should be stripped. Not sure if this needs a CR? Will let committer decide
- π¬π§United Kingdom catch
Don't think this needs a CR, just a bug fix for me.
Committed/pushed to 11.x, 11.1.x and 10.5.x, thanks!