45
Affected versions of the package are vulnerable to Cross-site Scripting (XSS) when pasting malicious code in a Trix editor.
You're affected if you are using a version which is within vulnerability ranges.
Upgrade trix library to patch version.
Link to vendor website