fix: render API error text safely to avoid XSS

[wsxiaolin]

Motivation

• Prevent rendering untrusted API/backend message strings as HTML in the error dialog which created an XSS sink when showAPiError forwarded res.Message into the component.

Description

• Replaced v-html with plain text interpolation {{ displayMessage }} in src/components/popup/ApiErrorDialog.vue so API-provided message strings are not interpreted as HTML.

Testing

• Ran a production build with npm run -s build, which completed successfully.

---

Codex Task

[gushishang]

@codex

[chatgpt-codex-connector]

Codex Review: Didn't find any major issues. 👍

ℹ️ About Codex in GitHub

Your team has set up Codex to review pull requests in this repo. Reviews are triggered when you

• Open a pull request for review
• Mark a draft as ready
• Comment "@codex review".

If Codex has suggestions, it will comment; otherwise it will react with 👍.

Codex can also answer questions or update the PR. Try commenting "@codex address that feedback".