Html injection in event Description

#Hi team there is Html injection when user add Description to event when public user search for published event #Step's * login to https://www.linkedin.com/groups/ * create event mark it as Public add <a href="https://malicious-site.com">Click me!</a> as Description {F2785963} * save change now navigate to ==Search== enter your event name * when ==result== show up html code get executed in the Description {F2785962} POC:F2785976 ## Impact attacker able to run html code