[MEDIUM] CVE-2022-28803: Stored XSS in link tags added via XHR

PKSA-d1c8-bxwg-9sbf CVE-2022-28803 GHSA-rppc-655v-7j3c

Affected package: silverstripe/framework

Affected version: >=4.0.0,<4.10.9

Reported by:
GitHub, FriendsOfPHP/security-advisories