@sveltia/cms 0.105.1 → 0.105.3

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@sveltia/cms",
-  "version": "0.105.1",
+  "version": "0.105.3",
   "description": "Sveltia CMS is a modern, lightweight, Git-based headless content management system.",
   "keywords": [
     "cms",

package/schema/sveltia-cms.json

@@ -2942,8 +2942,8 @@
         },
         "sanitize_preview": {
           "type": "boolean",
-          "description": "Whether to sanitize the preview HTML. Default: `false`.",
-          "markdownDescription": "Whether to sanitize the preview HTML. Default: `false`."
+          "description": "Whether to sanitize the preview HTML. Default: `true`. Note that Sveltia CMS has changed the default value from `false` to `true` to enhance security, whereas Netlify/Decap CMS keeps it as `false`. We recommend keeping this option enabled unless disabling it fixes a broken preview and you fully trust all users of your CMS.",
+          "markdownDescription": "Whether to sanitize the preview HTML. Default: `true`. Note that Sveltia CMS has changed the default value from `false` to `true` to enhance security, whereas Netlify/Decap CMS keeps it as `false`. We recommend keeping this option enabled unless disabling it fixes a broken preview and you fully trust all users of your CMS."
         },
         "linked_images": {
           "type": "boolean",

package/types/public.d.ts

@@ -826,7 +826,10 @@ export type MarkdownFieldProps = {
      */
     modes?: RichTextEditorMode[];
     /**
-     * Whether to sanitize the preview HTML. Default: `false`.
+     * Whether to sanitize the preview HTML. Default: `true`.
+     * Note that Sveltia CMS has changed the default value from `false` to `true` to enhance security,
+     * whereas Netlify/Decap CMS keeps it as `false`. We recommend keeping this option enabled unless
+     * disabling it fixes a broken preview and you fully trust all users of your CMS.
      */
     sanitize_preview?: boolean;
     /**