I am running a submit preprocessor on "save" for a form. The form has a pretty hefty prefill service that brings in custom HTML into some fields that are parsed out. The HTML has some formatting chars that I believe are a culprit that make the line of code "!XssUtils.isXmlSafe(submissionDataBean.document)" return false.
I heard that we now do a check out of the box in the newer versions of TM. Do I need to use this function? It might be problematic to have to strip out data brought in by prefill.
TM version 4.3.4 supports XML submission XSS protection by default. This can be disable via the XSS Filter Enabled service parameter.