Update documentation for Rack::Protection::EscapedParams

Remove mention of `html_safe`

rack-protection/lib/rack/protection/escaped_params.rb

@@ -17,8 +17,7 @@ module Protection
     # More infos::         http://en.wikipedia.org/wiki/Cross-site_scripting
     #
     # Automatically escapes Rack::Request#params so they can be embedded in HTML
-    # or JavaScript without any further issues. Calls +html_safe+ on the escaped
-    # strings if defined, to avoid double-escaping in Rails.
+    # or JavaScript without any further issues.
     #
     # Options:
     # escape:: What escaping modes to use, should be Symbol or Array of Symbols.