[MEDIUM] CVE-2025-25197 - XSS attack in elemental "Content blocks in use" report

PKSA-8tky-y972-swxd CVE-2025-25197 GHSA-x8xm-c7p8-2pj2

Affected package: dnadesign/silverstripe-elemental

Affected version: <5.3.12

Reported by:
FriendsOfPHP/security-advisories, GitHub