From 7bd1eaa83da03ad027e2584144f6ccc57d90fef6 Mon Sep 17 00:00:00 2001
From: Bill Thornton <billt2006@gmail.com>
Date: Fri, 21 May 2021 00:24:59 -0400
Subject: [PATCH] Fix xss via displaymessage

---
 src/components/toast/toast.js | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/src/components/toast/toast.js b/src/components/toast/toast.js
index 5a9cf0cd87..ea3a8e57df 100644
--- a/src/components/toast/toast.js
+++ b/src/components/toast/toast.js
@@ -22,7 +22,7 @@ export default function (options) {
 
     const elem = document.createElement('div');
     elem.classList.add('toast');
-    elem.innerHTML = options.text;
+    elem.textContent = options.text;
 
     document.body.appendChild(elem);