pypi›pywb›CVE-2021-392866.1 MEDIUMCross-site ScriptingWebrecorder pywb allows XSS because it does not ensure that Jinja2 templates are autoescaped.