From 42d551096a6977426390bf5d00e3f12355ca08a7 Mon Sep 17 00:00:00 2001
From: Matthew Piatetsky <mpiatetsky@edx.org>
Date: Fri, 24 May 2019 11:34:39 -0400
Subject: [PATCH] fix xss issue for all dashboard redirect messages

---
 common/djangoapps/student/views/dashboard.py | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/common/djangoapps/student/views/dashboard.py b/common/djangoapps/student/views/dashboard.py
index 9102752a0c..cba46b4a22 100644
--- a/common/djangoapps/student/views/dashboard.py
+++ b/common/djangoapps/student/views/dashboard.py
@@ -836,7 +836,7 @@ def student_dashboard(request):
         'consent_required_courses': consent_required_courses,
         'enterprise_customer_name': enterprise_customer_name,
         'enrollment_message': enrollment_message,
-        'redirect_message': redirect_message,
+        'redirect_message': Text(redirect_message),
         'account_activation_messages': account_activation_messages,
         'activate_account_message': activate_account_message,
         'course_enrollments': course_enrollments,