This simple React app shows what methods of rendering possible user input are safe from XSS (cross-site scripting vulnerabilites) and what methods are dangerous
npm startWrite XSS to the user input and inspect where it is dangerous. Code is in App.js