From 10b60cee12b7706ef67c55b7894fe3a7b273dba3 Mon Sep 17 00:00:00 2001
From: Shivam7-1 <55046031+Shivam7-1@users.noreply.github.com>
Date: Fri, 6 Dec 2024 21:47:15 +0530
Subject: [PATCH 1/3] Update configAggregator.js

---
 .../lib/ContentTypes/Block/configAggregator.js         | 10 +++++++++-
 1 file changed, 9 insertions(+), 1 deletion(-)

diff --git a/packages/pagebuilder/lib/ContentTypes/Block/configAggregator.js b/packages/pagebuilder/lib/ContentTypes/Block/configAggregator.js
index 709260d5df..9830d5bd62 100644
--- a/packages/pagebuilder/lib/ContentTypes/Block/configAggregator.js
+++ b/packages/pagebuilder/lib/ContentTypes/Block/configAggregator.js
@@ -1,8 +1,16 @@
+import DOMPurify from 'dompurify';
 import { getAdvanced } from '../../utils';
 
 export default node => {
+    // Get the raw HTML content from the first child node
+    const rawHTML = node.childNodes[0] ? node.childNodes[0].innerHTML : '';
+
+    // Sanitize the raw HTML using DOMPurify
+    const sanitizedHTML = DOMPurify.sanitize(rawHTML);
+
     return {
-        richContent: node.childNodes[0] ? node.childNodes[0].innerHTML : '',
+        // Return the sanitized HTML content, along with the result from getAdvanced
+        richContent: sanitizedHTML,
         ...getAdvanced(node)
     };
 };

From 45e26de59f47e7427b8ccc6bf77869f1ef501ec4 Mon Sep 17 00:00:00 2001
From: Shivam7-1 <55046031+Shivam7-1@users.noreply.github.com>
Date: Wed, 18 Dec 2024 14:52:23 +0530
Subject: [PATCH 2/3] Updated dependencies package.json

---
 package.json | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/package.json b/package.json
index 31a55218a0..83665b2901 100755
--- a/package.json
+++ b/package.json
@@ -50,6 +50,8 @@
     "path-to-regexp": "^8.2.0",
     "qs": "^6.13.0",
     "setimmediate": "^1.0.5"
+    "dompurify": "^2.3.8"
+
   },
   "devDependencies": {
     "@babel/plugin-transform-runtime": "~7.4.4",

From 5495fbed081fb40bc1dd1ed9a7b5928225a68e1e Mon Sep 17 00:00:00 2001
From: Shivam7-1 <55046031+Shivam7-1@users.noreply.github.com>
Date: Mon, 23 Dec 2024 11:53:17 +0000
Subject: [PATCH 3/3] Fix

---
 package.json | 2 +-
 yarn.lock    | 5 +++++
 2 files changed, 6 insertions(+), 1 deletion(-)

diff --git a/package.json b/package.json
index 83665b2901..6fb3090daa 100755
--- a/package.json
+++ b/package.json
@@ -49,7 +49,7 @@
     "caniuse-lite": "~1.0.30001335",
     "path-to-regexp": "^8.2.0",
     "qs": "^6.13.0",
-    "setimmediate": "^1.0.5"
+    "setimmediate": "^1.0.5",
     "dompurify": "^2.3.8"
 
   },
diff --git a/yarn.lock b/yarn.lock
index 1c9743f74c..82ad11d9a4 100644
--- a/yarn.lock
+++ b/yarn.lock
@@ -8935,6 +8935,11 @@ domhandler@^4.0.0, domhandler@^4.2.0, domhandler@^4.3.1:
   dependencies:
     domelementtype "^2.2.0"
 
+dompurify@^2.3.8:
+  version "2.5.8"
+  resolved "https://registry.yarnpkg.com/dompurify/-/dompurify-2.5.8.tgz#2809d89d7e528dc7a071dea440d7376df676f824"
+  integrity sha512-o1vSNgrmYMQObbSSvF/1brBYEQPHhV1+gsmrusO7/GXtp1T9rCS8cXFqVxK/9crT1jA6Ccv+5MTSjBNqr7Sovw==
+
 domutils@^2.5.2, domutils@^2.8.0:
   version "2.8.0"
   resolved "https://registry.yarnpkg.com/domutils/-/domutils-2.8.0.tgz#4437def5db6e2d1f5d6ee859bd95ca7d02048135"