Add setHTMLUnsafe and parseHTMLUnsafe methods

source

@@ -10577,6 +10577,8 @@ typedef (<span>HTMLScriptElement</span> or <span>SVGScriptElement</span>) <dfn t
 
 [<span>LegacyOverrideBuiltIns</span>]
 partial interface <dfn id="document" data-lt="">Document</dfn> {
+  static <code>Document</code> <span data-x="dom-parseHTMLUnsafe">parseHTMLUnsafe</span>(string html);
+
   // <span>resource metadata management</span>
   [PutForwards=<span data-x="dom-location-href">href</span>, <span>LegacyUnforgeable</span>] readonly attribute <span>Location</span>? <span data-x="dom-document-location">location</span>;
   attribute USVString <span data-x="dom-document-domain">domain</span>;
@@ -10666,6 +10668,20 @@ partial interface <dfn id="document" data-lt="">Document</dfn> {
   readonly attribute <span>Element</span>? <span data-x="dom-documentorshadowroot-activeElement">activeElement</span>;
 };</code></pre>
 
+  <h4>The <code>ShadowRoot</code> interface</h4>
+
+  <p><cite>DOM</cite> defines the <code>ShadowRoot</code> interface, which this specification
+  extends.</p>
+
+  <pre><code class="idl">partial interface <span id="ShadowRoot-partial">ShadowRoot</span> {
+  undefined <span data-x="dom-ShadowRoot-setHTMLUnsafe">setHTMLUnsafe</span>(DOMString string);
+};</code></pre>
+
+  <p>The <dfn method for="ShadowRoot"><code
+  data-x="dom-ShadowRoot-setHTMLUnsafe">setHTMLUnsafe(<var>string</var>)</code></dfn> method steps
+  are to run the <span>unsafe set HTML</span> steps given <span>this</span>, <span>this</span>'s
+  <span>shadow host</span>, and <var>string</var>.</p>
+
   <h4><dfn>Resource metadata management</dfn></h4>
 
   <dl class="domintro">
@@ -108860,6 +108876,8 @@ document.body.appendChild(frame)</code></pre>
        also live here? -->
   <h3 id="dom-parsing-and-serialization">DOM parsing</h3>
 
+  <h4>The <code>DOMParser</code> interface</h4>
+
   <p>The <code>DOMParser</code> interface allows authors to create new <code>Document</code> objects
   by parsing strings, as either HTML or XML.</p>
 
@@ -108920,7 +108938,7 @@ enum <dfn enum>DOMParserSupportedType</dfn> {
    <li>
     <p>Let <var>document</var> be a new <code>Document</code>, whose <span
     data-x="concept-document-content-type">content type</span> is <var>type</var> and <span
-    data-x="concept-document-URL">url</span> is this's <span>relevant global object</span>'s <span
+    data-x="concept-document-URL">URL</span> is this's <span>relevant global object</span>'s <span
     data-x="concept-document-window">associated <code>Document</code></span>'s <span
     data-x="concept-document-URL">URL</span>.</p>
     <!-- When https://github.com/whatwg/html/issues/4792 gets fixed we need to investigate which of
@@ -108941,23 +108959,8 @@ enum <dfn enum>DOMParserSupportedType</dfn> {
      data-x="dom-DOMParserSupportedType-texthtml"><code>text/html</code>"</dfn></dt>
      <dd>
       <ol>
-       <li><p>Set <var>document</var>'s <span data-x="concept-document-type">type</span> to "<code
-       data-x="">html</code>".</p></li>
-
-       <li><p>Create an <span>HTML parser</span> <var>parser</var>, associated with
-       <var>document</var>.</p></li>
-
-       <li><p>Place <var>string</var> into the <span>input stream</span> for <var>parser</var>. The
-       encoding <span data-x="concept-encoding-confidence">confidence</span> is
-       <i>irrelevant</i>.</p></li>
-
-       <li>
-        <p>Start <var>parser</var> and let it run until it has consumed all the characters just
-        inserted into the input stream.</p>
-
-        <p class="note">This might mutate the document's <span
-        data-x="concept-document-mode">mode</span>.</p>
-       </li>
+       <li><p><span>Parse HTML from a string</span> given <var>document</var> and
+       <var>string</var>.</p></li>
       </ol>
 
       <p class="note">Since <var>document</var> does not have a <span
@@ -108999,8 +109002,106 @@ enum <dfn enum>DOMParserSupportedType</dfn> {
    <li><p>Return <var>document</var>.</p>
   </ol>
 
+  <p>To <dfn>parse HTML from a string</dfn>, given a <var>document</var> <code>Document</code> and a
+  <span>string</span> <var>string</var>:</p>
+
+  <ol>
+   <li><p>Set <var>document</var>'s <span data-x="concept-document-type">type</span> to "<code
+   data-x="">html</code>".</p></li>
+
+   <li><p>Create an <span>HTML parser</span> <var>parser</var>, associated with
+   <var>document</var>.</p></li>
+
+   <li><p>Place <var>string</var> into the <span>input stream</span> for <var>parser</var>. The
+   encoding <span data-x="concept-encoding-confidence">confidence</span> is
+   <i>irrelevant</i>.</p></li>
+
+   <li>
+    <p>Start <var>parser</var> and let it run until it has consumed all the characters just
+    inserted into the input stream.</p>
+
+    <p class="note">This might mutate the document's <span
+    data-x="concept-document-mode">mode</span>.</p>
+   </li>
+  </ol>
+
   </div>
 
+  <h4>Unsafe HTML parsing methods</h4>
+
+  <dl class="domintro">
+   <dt><code data-x=""><var>element</var>.<span subdfn
+   data-x="dom-Element-setHTMLUnsafe">setHTMLUnsafe</span>(<var>string</var>)</code></dt>
+
+   <dd>
+    <p>Parses <var>string</var> using the HTML parser, and replaces the children of
+    <var>element</var> with the result.</p>
+   </dd>
+
+   <dt><code data-x=""><var>shadowRoot</var>.<span subdfn
+   data-x="dom-ShadowRoot-setHTMLUnsafe">setHTMLUnsafe</span>(<var>string</var>)</code></dt>
+
+   <dd>
+    <p>Parses <var>string</var> using the HTML parser, and replaces the children of
+    <var>shadowRoot</var> with the result.</p>
+   </dd>
+
+   <dt><code data-x=""><var>doc</var> = Document.<span
+   data-x="dom-parseHTMLUnsafe">parseHTMLUnsafe</span>(<var>string</var>)</code></dt>
+
+   <dd>
+    <p>Parses <var>string</var> using the HTML parser, and returns the resulting
+    <code>Document</code>.</p>
+   </dd>
+  </dl>
+
+  <p class="note">These methods perform no sanitization to remove potentially-dangerous elements and
+  attributes like <code>script</code> or <span>event handler content attributes</span>.</p>
+
+  <pre><code class="idl">partial interface <span id="Element-partial">Element</span> {
+  undefined <span data-x="dom-Element-setHTMLUnsafe">setHTMLUnsafe</span>(DOMString string);
+};</code></pre>
+
+  <p>The <dfn method for="Element"><code
+  data-x="dom-Element-setHTMLUnsafe">setHTMLUnsafe(<var>string</var>)</code></dfn> method steps are
+  to run the <span>unsafe set HTML</span> steps given <span>this</span>, <span>this</span>, and
+  <var>string</var>.</p>
+
+  <p>To <dfn>unsafe set HTML</dfn>, given an <code>Element</code> or <code>ShadowRoot</code>
+  <var>container</var>, an <code>Element</code> <var>contextElement</var>, and a <span>string</span>
+  <var>string</var>:</p>
+
+  <ol>
+   <li><p>Let <var>newChildren</var> be the result of the <span>HTML fragment parsing algorithm</span>
+   given <var>contextElement</var> and <var>string</var>.</p></li>
+
+   <li><p>Let <var>fragment</var> be a new <code>DocumentFragment</code> whose <span>node
+   document</span> is <var>contextElement</var>'s <span>node document</span>.</p></li>
+
+   <li><p>For each <var>node</var> in <var>newChildren</var>, <span
+   data-x="concept-node-append">append</span> <var>node</var> to <var>fragment</var>.</p></li>
+
+   <li><p>Let <var>target</var> be <var>container</var>'s <span>template contents</span> if
+   <var>container</var> is a <code>template</code> element; otherwise <var>container</var>.</p></li>
+
+   <li><p><span data-x="concept-node-replace-all">Replace all</span> with <var>fragment</var> within
+   <var>target</var>.</p></li>
+  </ol>
+
+  <p>The static <dfn method for="Document"><code
+  data-x="dom-parseHTMLUnsafe">parseHTMLUnsafe(<var>string</var>)</code></dfn> method steps are:</p>
+
+  <ol>
+   <li><p>Let <var>document</var> be a new <code>Document</code>, whose <span
+   data-x="concept-document-content-type">content type</span> is "<code
+   data-x="">text/html</code>".</p></li>
+
+   <li><p><span>Parse HTML from a string</span> given <var>document</var> and
+   <var>string</var>.</p></li>
+
+   <li><p>Return <var>document</var>.</p></li>
+  </ol>
+
 
   <h3 split-filename="timers-and-user-prompts" id="timers">Timers</h3>