From 1f79648d5739e6f604b40daec4c19ca706b64a46 Mon Sep 17 00:00:00 2001
From: Carpentier Pierre-Francois <carpentier.pf@gmail.com>
Date: Wed, 2 Jan 2019 23:59:03 +0100
Subject: [PATCH] Update ChangeLog.rst

---
 ChangeLog.rst | 3 +++
 1 file changed, 3 insertions(+)

diff --git a/ChangeLog.rst b/ChangeLog.rst
index 2597668..1c009fa 100644
--- a/ChangeLog.rst
+++ b/ChangeLog.rst
@@ -1,6 +1,9 @@
 Dev
 ***
 
+* [sec ] fix XSS injection in the url redirect in the login page (thanks to jthiltges)
+* [impr] more systematic use of html and url escaping in the html rendering to prevent against content injection (thanks to jthiltges)
+
 Version 0.5.2
 *************