Fix emoji xss (#2601)

* Remove risky output text handling in emoji replacer

Removed $sce trust from output text in emoji replacer.

* Fix typo in output preview heading

* Include emoji output image in README

Add emoji output image to README

Author: SapphicFire

Modern Development/Service Portal Widgets/Emoji Replacer Widget/Client Script.cs renamed to Modern Development/Service Portal Widgets/Emoji Replacer Widget/Client Script.js

@@ -1,4 +1,4 @@
-api.controller=function($scope,$sce) {
+api.controller=function($scope) {
   /* widget controller */
   var c = this;
 
@@ -20,6 +20,6 @@
 			var regex = new RegExp(key.replace(/([.*+?^${}()|\[\]\/\\])/g,"\\$1"),'g');
 			text = text.replace(regex,c.emojiMap[key]);
 		}
-		c.outputText= $sce.trustAsHtml(text);
+		c.outputText= text;
 	}
 };

Modern Development/Service Portal Widgets/Emoji Replacer Widget/HTML.html

@@ -9,7 +9,7 @@ <h4>😊
         placeholder="Type your message here..."></textarea>
   <div class ="mt-3">
     <h5>
-      Ouput Preview:
+      Output Preview:
     </h5>
     <div class="p-2 border rounded bg-light" ng-bind-html="c.outputText">
 

Modern Development/Service Portal Widgets/Emoji Replacer Widget/README.md

@@ -19,4 +19,4 @@ This widget enhances the user experience by automatically converting emojis code
 		":tada:":🎉
 ## Output
 
-
+![Emoji Output](emoji.png)