From 4c1a301bdb5f0733c1abc7cad26ca3221df55e0c Mon Sep 17 00:00:00 2001
From: Anthony Lavado <anthonylavado@me.com>
Date: Fri, 21 May 2021 00:32:37 -0400
Subject: [PATCH] Merge pull request #2676 from
 thornbill/fix-displaymessage-xss

(cherry picked from commit 70b41ff00592efa0a39ad2442ca82100098ff3b0)
Signed-off-by: Joshua M. Boniface <joshua@boniface.me>
---
 src/components/toast/toast.js | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/src/components/toast/toast.js b/src/components/toast/toast.js
index 75bb5ed2ed..159033a3c2 100644
--- a/src/components/toast/toast.js
+++ b/src/components/toast/toast.js
@@ -22,7 +22,7 @@ export default function (options) {
 
     const elem = document.createElement('div');
     elem.classList.add('toast');
-    elem.innerHTML = options.text;
+    elem.textContent = options.text;
 
     document.body.appendChild(elem);