From 2b5682d4f39f7d16ce47e2f45ea19ffab615cc60 Mon Sep 17 00:00:00 2001 From: Andrey Andreev Date: Mon, 5 Jan 2015 21:02:52 +0200 Subject: [ci skip] Fix improper wording in upgrade notes --- user_guide_src/source/installation/upgrade_300.rst | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) (limited to 'user_guide_src/source') diff --git a/user_guide_src/source/installation/upgrade_300.rst b/user_guide_src/source/installation/upgrade_300.rst index a95125666..c84d16b31 100644 --- a/user_guide_src/source/installation/upgrade_300.rst +++ b/user_guide_src/source/installation/upgrade_300.rst @@ -247,7 +247,7 @@ A largely unknown rule about XSS cleaning is that it should *only be applied to output*, as opposed to input data. We've made that mistake ourselves with our automatic and global XSS cleaning -feature (see step 13 above), so now in an effort to discourage that +feature (see previous step about XSS above), so now in an effort to discourage that practice, we're also removing 'xss_clean' from the officially supported list of :doc:`form validation <../libraries/form_validation>` rules. -- cgit v1.2.3-24-g4f1b