OO-5198: don't escape booking description with HTML code

bfa4ad3b · srosse · 0cf45e67 · bfa4ad3b
Commit bfa4ad3b authored 4 years ago by srosse
--- a/src/main/java/org/olat/resource/accesscontrol/provider/paypalcheckout/ui/PaypalSmartButtonAccessController.java
+++ b/src/main/java/org/olat/resource/accesscontrol/provider/paypalcheckout/ui/PaypalSmartButtonAccessController.java
@@ -76,7 +76,9 @@ public class PaypalSmartButtonAccessController extends FormBasicController imple
 			
 			String description = link.getOffer().getDescription();
 			if(StringHelper.containsNonWhitespace(description)) {
-				description = Formatter.escWithBR(description).toString();
+				if(!StringHelper.isHtml(description)) {
+					description = Formatter.escWithBR(description).toString();
+				}
 				description = StringHelper.xssScan(description);
 				layoutCont.contextPut("description", description);
 			}