Netbox Community v4.1.7 and fixed in v.4.2.2 is vulnerable to Cross Site Scripting (XSS) via the RSS feed widget.
https://github.com/noxlumens/Vulnerability-Research/tree/main/CVE-2024-56915
https://github.com/netbox-community/netbox/releases/tag/v4.1.7