You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
But we create notifications with HTML in the body - e.g., for stock alerts.
The resulting notifications are rendered with escaped HTML such as <a href="/catalogue/test-product_6/">test product</a> is back in stock.
We need to either allow HTML in the body, or ensure we don't provide it. We already allow HTML in the subject so it seems silly not to allow it in the body.
The text was updated successfully, but these errors were encountered:
Issue Summary
The body for customer notifications are rendered as plain text in the detail view.
But we create notifications with HTML in the body - e.g., for stock alerts.
The resulting notifications are rendered with escaped HTML such as
<a href="/catalogue/test-product_6/">test product</a> is back in stock
.We need to either allow HTML in the body, or ensure we don't provide it. We already allow HTML in the subject so it seems silly not to allow it in the body.
The text was updated successfully, but these errors were encountered: