Removes non-allowable HTML from parsed block attribute values when filtering in the post context.
Parameters
$content
stringrequired- Content to be run through KSES.
$allowed_html
array[]|stringrequired- An array of allowed HTML elements and attributes, or a context name such as
'post'
. $allowed_protocols
string[]required- Array of allowed URL protocols.
Source
function wp_pre_kses_block_attributes( $content, $allowed_html, $allowed_protocols ) {
/*
* `filter_block_content` is expected to call `wp_kses`. Temporarily remove
* the filter to avoid recursion.
*/
remove_filter( 'pre_kses', 'wp_pre_kses_block_attributes', 10 );
$content = filter_block_content( $content, $allowed_html, $allowed_protocols );
add_filter( 'pre_kses', 'wp_pre_kses_block_attributes', 10, 3 );
return $content;
}
Changelog
Version | Description |
---|---|
5.3.1 | Introduced. |
User Contributed Notes
You must log in before being able to contribute a note or feedback.