IntelliJ IDEA XML parser was found vulnerable to XML External Entity attack, an attacker can exploit the vulnerability by implementing malicious code on both Androidmanifest.xml.
https://youtrack.jetbrains.com/issue/IDEA-175381
https://research.checkpoint.com/parsedroid-targeting-android-development-research-community/