Group name is not properly escaped allowing XSS An XSS vulnerability was found in WebUI when creating group with HTML via SSM or API and checking snapshot with this group join/leave. Product bug: https://bugzilla.redhat.com/show_bug.cgi?id=1322710
Acknowledgments: Name: Jan Hutař (Red Hat)
This issue has been addressed in the following products: Red Hat Satellite 5.7 Via RHSA-2016:1484 https://rhn.redhat.com/errata/RHSA-2016-1484.html