It was found that the realm management interface in Keycloak's admin console would permit a script to be set via the policy. An attacker with authenticated user and realm management permissions could configure a malicious script to trigger and execute arbitrary code with the permissions of the application user.
Acknowledgments: Name: Bart Toersche (Simacan)