Firefox for Web DevelopersFeb 25
You can throw away innerHTML and replace it with the new setHTML(), which has a built-in sanitizer. Here's how it works:
Show threadFirefox for Web DevelopersFeb 25
Here are the full docs https://developer.mozilla.org/en-US/docs/Web/API/HTML_Sanitizer_API
HTML Sanitizer API - Web APIs | MDN

The HTML Sanitizer API allows developers to take strings of HTML and filter out unwanted elements, attributes, and other HTML entities when they are inserted into the DOM or a shadow DOM.

MDN Web Docs
Show threadXela
@firefoxwebdevs awesome! Now we only have to wait for "baseline" 😉
Feb 25 at 3:01pmWeb
Show threadFirefox for Web DevelopersFeb 25
@xela hopefully it won't be too long! Just Safari to go