Template Syntax

Variable Escaping

When variables are output with ${variable}, they can be escaped with a default escape transformation. Typically, this would be an HTML escape or XML escape transform, to prevent security problems such as cross-site scripting attacks (XSS).

If you need to write a variable unescaped, it can be output using the unescaped keyword:

${variable unescaped}

This explicitly disables any default escaping for this variable expression.