Upgrade to jQuery 3.5.x
As a Developer, you can use Oracle Content Management Toolkit to identify improperly closed html tags.
Upgrade to jQuery 3.5.x to pick up a security fix in the HTML Parser.
https://blog.jquery.com/2020/04/10/jquery-3-5-0-released
Parsing certain HTML strings in jQuery 3.5.x will give different results than
parsing the same strings in 3.4.x. These strings involve tags that are self-closed, in
violation of the HTML standard; for example: "<div />"
. Such
strings, especially when part of a larger sequence of tags, might be parsed differently
in 3.5.x compared to 3.4.x.
You can run cec create-asset-report <site>
to find improperly closed
html tags in page JSON files and component HTML and JS files.