id	summary	reporter	owner	description	type	status	component	version	severity	resolution	keywords	cc	stage	has_patch	needs_docs	needs_tests	needs_better_patch	easy	ui_ux
615	[patch] Replace strip_tags with escape in d.v.a.main	sune.kirkeby@…	Adrian Holovaty	It's not enough to strip_tags the object repr's in the admin views. They should be HTML-escaped instead. Otherwise the generated HTML is not valid, and breaks when served as XHTML.	defect	closed	contrib.admin		normal	fixed			Unreviewed	1	0	0	0	0	0