User: eaton Branch: HEAD Date: Sat, 11 Jul 2009 20:08:07 +0000 Modified files: /modules/token/modules comment.tokens.inc node.tokens.inc poll.tokens.inc system.tokens.inc taxonomy.tokens.inc user.tokens.inc Log message: Changing a bunch of check_plain() calls to filter_xss(). Tokens shouldn't escape HTML implicitly; modules can still call HTML scrubbing functions after substitution is done if they want pure plaintext. (see http://drupal.org/node/113614#comment-1800750) Links: http://cvs.drupal.org/diff.php?path=contributions/modules/token/modules/comm... http://cvs.drupal.org/diff.php?path=contributions/modules/token/modules/node... http://cvs.drupal.org/diff.php?path=contributions/modules/token/modules/poll... http://cvs.drupal.org/diff.php?path=contributions/modules/token/modules/syst... http://cvs.drupal.org/diff.php?path=contributions/modules/token/modules/taxo... http://cvs.drupal.org/diff.php?path=contributions/modules/token/modules/user...