Cross-site scripting vulnerability was found in pcs due to improper validation of Node name field when creating new cluster or adding existing cluster.
Upstream fix :
* web UI: fixed XSS vulnerability
Created pcs tracking bugs for this issue:
Affects: fedora-all [bug 1434111]
Created attachment 1265070 [details]