30
Affected versions of the package are vulnerable to Cross-site Scripting (XSS) when rendering nodes and marks inside the editor.
You're affected if you are using a version which is within vulnerability ranges.
Upgrade prosemirror-view library to patch version.