Here’s a challenge for people who have rich reply contexts on their website. Reply to this post and see if your site is vulnerable to a script injection attack in rich reply contexts.