Advisories for Maven/Org.jenkins-Ci.plugins/Custom-Job-Icon package

Jenkins Custom Job Icon Plugin does not escape the job descriptions in tooltips, resulting in a stored cross-site scripting (XSS) vulnerability exploitable by attackers with Job/Configure permission.