From 67aa57f67baec9fe7f36d0d667c93c5f58d31b27 Mon Sep 17 00:00:00 2001
From: rafma0 <int.main@gmail.com>
Date: Thu, 23 Nov 2023 10:36:24 -0300
Subject: [PATCH] add param for markdownIt to handle html

---
 src/controllers/dashboard/plugins/add/index.js | 2 +-
 src/controllers/itemDetails/index.js           | 2 +-
 src/controllers/session/login/index.js         | 2 +-
 3 files changed, 3 insertions(+), 3 deletions(-)

diff --git a/src/controllers/dashboard/plugins/add/index.js b/src/controllers/dashboard/plugins/add/index.js
index 69dfc51f31..337cef996f 100644
--- a/src/controllers/dashboard/plugins/add/index.js
+++ b/src/controllers/dashboard/plugins/add/index.js
@@ -15,7 +15,7 @@ function populateHistory(packageInfo, page) {
     for (let i = 0; i < length; i++) {
         const version = packageInfo.versions[i];
         html += '<h2 style="margin:.5em 0;">' + version.version + '</h2>';
-        html += '<div style="margin-bottom:1.5em;">' + DOMPurify.sanitize(markdownIt().render(version.changelog)) + '</div>';
+        html += '<div style="margin-bottom:1.5em;">' + DOMPurify.sanitize(markdownIt({ html: true }).render(version.changelog)) + '</div>';
     }
 
     $('#revisionHistory', page).html(html);
diff --git a/src/controllers/itemDetails/index.js b/src/controllers/itemDetails/index.js
index 0108a4c347..d8adec3ad5 100644
--- a/src/controllers/itemDetails/index.js
+++ b/src/controllers/itemDetails/index.js
@@ -859,7 +859,7 @@ function renderOverview(page, item) {
     const overviewElements = page.querySelectorAll('.overview');
 
     if (overviewElements.length > 0) {
-        const overview = DOMPurify.sanitize(markdownIt().render(item.Overview || ''));
+        const overview = DOMPurify.sanitize(markdownIt({ html: true }).render(item.Overview || ''));
 
         if (overview) {
             for (const overviewElemnt of overviewElements) {
diff --git a/src/controllers/session/login/index.js b/src/controllers/session/login/index.js
index fabd087dba..f6fef57763 100644
--- a/src/controllers/session/login/index.js
+++ b/src/controllers/session/login/index.js
@@ -282,7 +282,7 @@ export default function (view, params) {
         apiClient.getJSON(apiClient.getUrl('Branding/Configuration')).then(function (options) {
             const loginDisclaimer = view.querySelector('.loginDisclaimer');
 
-            loginDisclaimer.innerHTML = DOMPurify.sanitize(markdownIt().render(options.LoginDisclaimer || ''));
+            loginDisclaimer.innerHTML = DOMPurify.sanitize(markdownIt({ html: true }).render(options.LoginDisclaimer || ''));
 
             for (const elem of loginDisclaimer.querySelectorAll('a')) {
                 elem.rel = 'noopener noreferrer';