[MEDIUM] OroCommerce Cross site scripting vulnerability during shipping rule editing for UPS integration

PKSA-rtnt-5225-nzch CVE-2022-31037 GHSA-4vf4-955g-vxp2

Affected package: oro/commerce

Affected version: >=4.1.0,<5.0.6

Reported by:
GitHub