Lemonldap NG (1.2.5) Control XSS problem with logonid have apostrophe
When an administrator resets the password of a person whose LogonID has an apostrophe (') like 'partick.t'oto", that person can not change the temporary password via SSO Portal. The problem appears when the XSS is actived and the permission of apostrophe in the user name Control (userControl = ^[\w.'-@]+$) is set. When the XSS is desactivated that work correctly.