cnvs.io Canvas 3.3.0 has XSS in the title and content fields of a "Posts > Add New" action, and during creation of new tags and users.Referenceshttps://github.com/cnvs/canvas/issues/331
