Merge pull request SORMAS-Foundation#3402 from ImisDevelopers/bugfix-3193-eventaction-html

[IMIS] Fix SORMAS-Foundation#3193 to re-enable html styling for event actions

Author: MateStrysewske

sormas-ui/src/main/java/de/symeda/sormas/ui/action/ActionListEntry.java

@@ -17,6 +17,9 @@
  *******************************************************************************/
 package de.symeda.sormas.ui.action;
 
+import org.jsoup.Jsoup;
+import org.jsoup.safety.Whitelist;
+
 import com.google.common.base.MoreObjects;
 import com.google.common.base.Strings;
 import com.vaadin.icons.VaadinIcons;
@@ -37,7 +40,6 @@
 import de.symeda.sormas.ui.utils.ButtonHelper;
 import de.symeda.sormas.ui.utils.CssStyles;
 import de.symeda.sormas.ui.utils.DateFormatHelper;
-import org.apache.commons.text.StringEscapeUtils;
 
 @SuppressWarnings("serial")
 public class ActionListEntry extends HorizontalLayout {
@@ -78,11 +80,15 @@ public ActionListEntry(ActionDto action) {
 		descReplyLayout.addStyleName(CssStyles.RICH_TEXT_CONTENT_CONTAINER);
 		withContentLayout.addComponents(descReplyLayout);
 
-		Label description = new Label(StringEscapeUtils.escapeHtml4(action.getDescription()), ContentMode.HTML);
+		Whitelist whitelist = Whitelist.relaxed();
+		whitelist.addTags("hr", "font");
+		whitelist.addAttributes("font", "size", "face", "color");
+		whitelist.addAttributes("div", "align");
+		Label description = new Label(Jsoup.clean(action.getDescription(), whitelist), ContentMode.HTML);
 		description.setWidth(100, Unit.PERCENTAGE);
 		descReplyLayout.addComponent(description);
 		if (!Strings.isNullOrEmpty(action.getReply())) {
-			Label replyLabel = new Label(StringEscapeUtils.escapeHtml4(action.getReply()), ContentMode.HTML);
+			Label replyLabel = new Label(Jsoup.clean(action.getReply(), whitelist), ContentMode.HTML);
 			replyLabel.setWidth(100, Unit.PERCENTAGE);
 			replyLabel.addStyleName(CssStyles.REPLY);
 			descReplyLayout.addComponent(replyLabel);