Run untrusted HTML through Text.HTML.SanitizeXSS.sanitizeXSS to
prevent XSS attacks.