All data coming into the RSA Archer GRC Platform is sanitized to ensure that HTML security vulnerabilities (such as cross-site scripting, JavaScript, and others) are excluded from the content. This sanitation occurs whether data in the Platform is entered in the user interface (UI) or imported through a data feed. There is one difference between the UI and Data Feed. Read this document to better understand the differences and how to properly encode incoming content.
