Ship with rails-html-sanitizer instead.

author: Kasper Timm Hansen <kaspth@gmail.com> 2014-09-02 21:07:41 +0200
committer: Kasper Timm Hansen <kaspth@gmail.com> 2014-09-03 20:27:59 +0200
commit: 28eecd934b91618b1334acce859c26c1a380f51a (patch)
tree: 589226d6f13aab150b6ac70f5d763eeb94fc83e2 /guides
parent: a2f8377d1dd66c200a9a8d31db14f2b0a4bec744 (diff)
download: rails-28eecd934b91618b1334acce859c26c1a380f51a.tar.gz
rails-28eecd934b91618b1334acce859c26c1a380f51a.tar.bz2
rails-28eecd934b91618b1334acce859c26c1a380f51a.zip
1 files changed, 2 insertions, 1 deletions
diff --git a/guides/source/4_2_release_notes.md b/guides/source/4_2_release_notes.md
index ae8ef34cdd..dad973cf5e 100644
--- a/guides/source/4_2_release_notes.md
+++ b/guides/source/4_2_release_notes.md
@@ -167,7 +167,8 @@ config.log_level = :info
 ### HTML Sanitizer
 
 The HTML sanitizer has been replaced with a new, more robust, implementation
-built upon Loofah and Nokogiri. The new sanitizer is (TODO: betterer).
+built upon Loofah and Nokogiri. The new sanitizer is more secure and its
+sanitization is more powerful and flexible.
 
 With a new sanitization algorithm, the sanitized output will change for certain
 pathological inputs.
author	Kasper Timm Hansen <kaspth@gmail.com>	2014-09-02 21:07:41 +0200
committer	Kasper Timm Hansen <kaspth@gmail.com>	2014-09-03 20:27:59 +0200
commit	28eecd934b91618b1334acce859c26c1a380f51a (patch)
tree	589226d6f13aab150b6ac70f5d763eeb94fc83e2 /guides
parent	a2f8377d1dd66c200a9a8d31db14f2b0a4bec744 (diff)
download	rails-28eecd934b91618b1334acce859c26c1a380f51a.tar.gz rails-28eecd934b91618b1334acce859c26c1a380f51a.tar.bz2 rails-28eecd934b91618b1334acce859c26c1a380f51a.zip