[MEDIUM] Cross-Site Scripting exploitable by Editors

PKSA-83dv-xmw9-2793 GHSA-j86x-pjmr-9m6w

Affected package: typo3/cms

Affected version: >=6.2.0,<6.2.14|>=7.0.0,<7.1.0|>=7.1.0,<7.2.0|>=7.2.0,<7.3.0|>=7.3.0,<7.3.1

Reported by:
GitHub, FriendsOfPHP/security-advisories