diff --git a/src/wp-content/themes/twentyfifteen/functions.php b/src/wp-content/themes/twentyfifteen/functions.php
index 71b42e6c6e151..614954b258862 100644
--- a/src/wp-content/themes/twentyfifteen/functions.php
+++ b/src/wp-content/themes/twentyfifteen/functions.php
@@ -412,7 +412,7 @@ function twentyfifteen_fonts_url() {
  * @since Twenty Fifteen 1.1
  */
 function twentyfifteen_javascript_detection() {
-	echo "<script>(function(html){html.className = html.className.replace(/\bno-js\b/,'js')})(document.documentElement);</script>\n";
+	wp_print_inline_script_tag( "(function(html){html.className = html.className.replace(/\bno-js\b/,'js')})(document.documentElement);" );
 }
 add_action( 'wp_head', 'twentyfifteen_javascript_detection', 0 );
 
@@ -666,3 +666,115 @@ function twentyfifteen_register_block_patterns() {
 }
 
 add_action( 'init', 'twentyfifteen_register_block_patterns' );
+
+if ( ! function_exists( 'wp_get_inline_script_tag' ) ) {
+	/**
+	 * Constructs an inline script tag.
+	 *
+	 * It is possible to inject attributes in the `<script>` tag via the {@see 'wp_inline_script_attributes'} filter.
+	 * Automatically injects type attribute if needed.
+	 *
+	 * Added for backward compatibility to support pre-5.7.0 WordPress versions.
+	 *
+	 * @since 5.7.0
+	 *
+	 * @param string $data       Data for script tag: JavaScript, importmap, speculationrules, etc.
+	 * @param array  $attributes Optional. Key-value pairs representing `<script>` tag attributes.
+	 * @return string String containing inline JavaScript code wrapped around `<script>` tag.
+	 */
+	function wp_get_inline_script_tag( $data, $attributes = array() ) {
+		$is_html5 = current_theme_supports( 'html5', 'script' ) || is_admin();
+		if ( ! isset( $attributes['type'] ) && ! $is_html5 ) {
+			// Keep the type attribute as the first for legacy reasons (it has always been this way in core).
+			$attributes = array_merge(
+				array( 'type' => 'text/javascript' ),
+				$attributes
+			);
+		}
+
+		/*
+		* XHTML extracts the contents of the SCRIPT element and then the XML parser
+		* decodes character references and other syntax elements. This can lead to
+		* misinterpretation of the script contents or invalid XHTML documents.
+		*
+		* Wrapping the contents in a CDATA section instructs the XML parser not to
+		* transform the contents of the SCRIPT element before passing them to the
+		* JavaScript engine.
+		*
+		* Example:
+		*
+		*     <script>console.log('&hellip;');</script>
+		*
+		*     In an HTML document this would print "&hellip;" to the console,
+		*     but in an XHTML document it would print "…" to the console.
+		*
+		*     <script>console.log('An image is <img> in HTML');</script>
+		*
+		*     In an HTML document this would print "An image is <img> in HTML",
+		*     but it's an invalid XHTML document because it interprets the `<img>`
+		*     as an empty tag missing its closing `/`.
+		*
+		* @see https://www.w3.org/TR/xhtml1/#h-4.8
+		*/
+		if (
+			! $is_html5 &&
+			(
+				! isset( $attributes['type'] ) ||
+				'module' === $attributes['type'] ||
+				str_contains( $attributes['type'], 'javascript' ) ||
+				str_contains( $attributes['type'], 'ecmascript' ) ||
+				str_contains( $attributes['type'], 'jscript' ) ||
+				str_contains( $attributes['type'], 'livescript' )
+			)
+		) {
+			/*
+			* If the string `]]>` exists within the JavaScript it would break
+			* out of any wrapping CDATA section added here, so to start, it's
+			* necessary to escape that sequence which requires splitting the
+			* content into two CDATA sections wherever it's found.
+			*
+			* Note: it's only necessary to escape the closing `]]>` because
+			* an additional `<![CDATA[` leaves the contents unchanged.
+			*/
+			$data = str_replace( ']]>', ']]]]><![CDATA[>', $data );
+
+			// Wrap the entire escaped script inside a CDATA section.
+			$data = sprintf( "/* <![CDATA[ */\n%s\n/* ]]> */", $data );
+		}
+
+		$data = "\n" . trim( $data, "\n\r " ) . "\n";
+
+		/**
+		 * Filters attributes to be added to a script tag.
+		 *
+		 * Added for backward compatibility to support pre-5.7.0 WordPress versions.
+		 *
+		 * @since 5.7.0
+		 *
+		 * @param array  $attributes Key-value pairs representing `<script>` tag attributes.
+		 *                           Only the attribute name is added to the `<script>` tag for
+		 *                           entries with a boolean value, and that are true.
+		 * @param string $data       Inline data.
+		 */
+		$attributes = apply_filters( 'wp_inline_script_attributes', $attributes, $data );
+
+		return sprintf( "<script%s>%s</script>\n", wp_sanitize_script_attributes( $attributes ), $data );
+	}
+}
+
+if ( ! function_exists( 'wp_print_inline_script_tag' ) ) {
+	/**
+	 * Prints an inline script tag.
+	 *
+	 * It is possible to inject attributes in the `<script>` tag via the {@see 'wp_inline_script_attributes'} filter.
+	 * Automatically injects type attribute if needed.
+	 *
+	 * @since 5.7.0
+	 *
+	 * @param string $data       Data for script tag: JavaScript, importmap, speculationrules, etc.
+	 * @param array  $attributes Optional. Key-value pairs representing `<script>` tag attributes.
+	 */
+	function wp_print_inline_script_tag( $data, $attributes = array() ) {
+		echo wp_get_inline_script_tag( $data, $attributes );
+	}
+}
diff --git a/src/wp-content/themes/twentynineteen/functions.php b/src/wp-content/themes/twentynineteen/functions.php
index dd21afc17c05b..a5f3cfb40901b 100644
--- a/src/wp-content/themes/twentynineteen/functions.php
+++ b/src/wp-content/themes/twentynineteen/functions.php
@@ -303,11 +303,12 @@ function twentynineteen_scripts() {
  */
 function twentynineteen_skip_link_focus_fix() {
 	// The following is minified via `terser --compress --mangle -- js/skip-link-focus-fix.js`.
-	?>
-	<script>
-	/(trident|msie)/i.test(navigator.userAgent)&&document.getElementById&&window.addEventListener&&window.addEventListener("hashchange",function(){var t,e=location.hash.substring(1);/^[A-z0-9_-]+$/.test(e)&&(t=document.getElementById(e))&&(/^(?:a|select|input|button|textarea)$/i.test(t.tagName)||(t.tabIndex=-1),t.focus())},!1);
-	</script>
-	<?php
+	wp_print_inline_script_tag(
+		'/(trident|msie)/i.test(navigator.userAgent) && document.getElementById && window.addEventListener && window.addEventListener("hashchange", function() {
+			var t, e = location.hash.substring(1);
+			/^[A-z0-9_-]+$/.test(e) && (t = document.getElementById(e)) && (/^(?:a|select|input|button|textarea)$/i.test(t.tagName) || (t.tabIndex = -1), t.focus());
+		}, false);'
+	);
 }
 
 /**
@@ -395,3 +396,115 @@ function twentynineteen_register_block_patterns() {
 }
 
 add_action( 'init', 'twentynineteen_register_block_patterns' );
+
+if ( ! function_exists( 'wp_get_inline_script_tag' ) ) {
+	/**
+	 * Constructs an inline script tag.
+	 *
+	 * It is possible to inject attributes in the `<script>` tag via the {@see 'wp_inline_script_attributes'} filter.
+	 * Automatically injects type attribute if needed.
+	 *
+	 * Added for backward compatibility to support pre-5.7.0 WordPress versions.
+	 *
+	 * @since 5.7.0
+	 *
+	 * @param string $data       Data for script tag: JavaScript, importmap, speculationrules, etc.
+	 * @param array  $attributes Optional. Key-value pairs representing `<script>` tag attributes.
+	 * @return string String containing inline JavaScript code wrapped around `<script>` tag.
+	 */
+	function wp_get_inline_script_tag( $data, $attributes = array() ) {
+		$is_html5 = current_theme_supports( 'html5', 'script' ) || is_admin();
+		if ( ! isset( $attributes['type'] ) && ! $is_html5 ) {
+			// Keep the type attribute as the first for legacy reasons (it has always been this way in core).
+			$attributes = array_merge(
+				array( 'type' => 'text/javascript' ),
+				$attributes
+			);
+		}
+
+		/*
+		* XHTML extracts the contents of the SCRIPT element and then the XML parser
+		* decodes character references and other syntax elements. This can lead to
+		* misinterpretation of the script contents or invalid XHTML documents.
+		*
+		* Wrapping the contents in a CDATA section instructs the XML parser not to
+		* transform the contents of the SCRIPT element before passing them to the
+		* JavaScript engine.
+		*
+		* Example:
+		*
+		*     <script>console.log('&hellip;');</script>
+		*
+		*     In an HTML document this would print "&hellip;" to the console,
+		*     but in an XHTML document it would print "…" to the console.
+		*
+		*     <script>console.log('An image is <img> in HTML');</script>
+		*
+		*     In an HTML document this would print "An image is <img> in HTML",
+		*     but it's an invalid XHTML document because it interprets the `<img>`
+		*     as an empty tag missing its closing `/`.
+		*
+		* @see https://www.w3.org/TR/xhtml1/#h-4.8
+		*/
+		if (
+			! $is_html5 &&
+			(
+				! isset( $attributes['type'] ) ||
+				'module' === $attributes['type'] ||
+				str_contains( $attributes['type'], 'javascript' ) ||
+				str_contains( $attributes['type'], 'ecmascript' ) ||
+				str_contains( $attributes['type'], 'jscript' ) ||
+				str_contains( $attributes['type'], 'livescript' )
+			)
+		) {
+			/*
+			* If the string `]]>` exists within the JavaScript it would break
+			* out of any wrapping CDATA section added here, so to start, it's
+			* necessary to escape that sequence which requires splitting the
+			* content into two CDATA sections wherever it's found.
+			*
+			* Note: it's only necessary to escape the closing `]]>` because
+			* an additional `<![CDATA[` leaves the contents unchanged.
+			*/
+			$data = str_replace( ']]>', ']]]]><![CDATA[>', $data );
+
+			// Wrap the entire escaped script inside a CDATA section.
+			$data = sprintf( "/* <![CDATA[ */\n%s\n/* ]]> */", $data );
+		}
+
+		$data = "\n" . trim( $data, "\n\r " ) . "\n";
+
+		/**
+		 * Filters attributes to be added to a script tag.
+		 *
+		 * Added for backward compatibility to support pre-5.7.0 WordPress versions.
+		 *
+		 * @since 5.7.0
+		 *
+		 * @param array  $attributes Key-value pairs representing `<script>` tag attributes.
+		 *                           Only the attribute name is added to the `<script>` tag for
+		 *                           entries with a boolean value, and that are true.
+		 * @param string $data       Inline data.
+		 */
+		$attributes = apply_filters( 'wp_inline_script_attributes', $attributes, $data );
+
+		return sprintf( "<script%s>%s</script>\n", wp_sanitize_script_attributes( $attributes ), $data );
+	}
+}
+
+if ( ! function_exists( 'wp_print_inline_script_tag' ) ) {
+	/**
+	 * Prints an inline script tag.
+	 *
+	 * It is possible to inject attributes in the `<script>` tag via the {@see 'wp_inline_script_attributes'} filter.
+	 * Automatically injects type attribute if needed.
+	 *
+	 * @since 5.7.0
+	 *
+	 * @param string $data       Data for script tag: JavaScript, importmap, speculationrules, etc.
+	 * @param array  $attributes Optional. Key-value pairs representing `<script>` tag attributes.
+	 */
+	function wp_print_inline_script_tag( $data, $attributes = array() ) {
+		echo wp_get_inline_script_tag( $data, $attributes );
+	}
+}
diff --git a/src/wp-content/themes/twentyseventeen/functions.php b/src/wp-content/themes/twentyseventeen/functions.php
index 742db0b143e6e..a1d3fb0af6e8d 100644
--- a/src/wp-content/themes/twentyseventeen/functions.php
+++ b/src/wp-content/themes/twentyseventeen/functions.php
@@ -406,7 +406,7 @@ function twentyseventeen_excerpt_more( $link ) {
  * @since Twenty Seventeen 1.0
  */
 function twentyseventeen_javascript_detection() {
-	echo "<script>(function(html){html.className = html.className.replace(/\bno-js\b/,'js')})(document.documentElement);</script>\n";
+	wp_print_inline_script_tag( "(function(html){html.className = html.className.replace(/\bno-js\b/,'js')})(document.documentElement);" );
 }
 add_action( 'wp_head', 'twentyseventeen_javascript_detection', 0 );
 
@@ -758,3 +758,115 @@ function twentyseventeen_register_block_patterns() {
 }
 
 add_action( 'init', 'twentyseventeen_register_block_patterns' );
+
+if ( ! function_exists( 'wp_get_inline_script_tag' ) ) {
+	/**
+	 * Constructs an inline script tag.
+	 *
+	 * It is possible to inject attributes in the `<script>` tag via the {@see 'wp_inline_script_attributes'} filter.
+	 * Automatically injects type attribute if needed.
+	 *
+	 * Added for backward compatibility to support pre-5.7.0 WordPress versions.
+	 *
+	 * @since 5.7.0
+	 *
+	 * @param string $data       Data for script tag: JavaScript, importmap, speculationrules, etc.
+	 * @param array  $attributes Optional. Key-value pairs representing `<script>` tag attributes.
+	 * @return string String containing inline JavaScript code wrapped around `<script>` tag.
+	 */
+	function wp_get_inline_script_tag( $data, $attributes = array() ) {
+		$is_html5 = current_theme_supports( 'html5', 'script' ) || is_admin();
+		if ( ! isset( $attributes['type'] ) && ! $is_html5 ) {
+			// Keep the type attribute as the first for legacy reasons (it has always been this way in core).
+			$attributes = array_merge(
+				array( 'type' => 'text/javascript' ),
+				$attributes
+			);
+		}
+
+		/*
+		* XHTML extracts the contents of the SCRIPT element and then the XML parser
+		* decodes character references and other syntax elements. This can lead to
+		* misinterpretation of the script contents or invalid XHTML documents.
+		*
+		* Wrapping the contents in a CDATA section instructs the XML parser not to
+		* transform the contents of the SCRIPT element before passing them to the
+		* JavaScript engine.
+		*
+		* Example:
+		*
+		*     <script>console.log('&hellip;');</script>
+		*
+		*     In an HTML document this would print "&hellip;" to the console,
+		*     but in an XHTML document it would print "…" to the console.
+		*
+		*     <script>console.log('An image is <img> in HTML');</script>
+		*
+		*     In an HTML document this would print "An image is <img> in HTML",
+		*     but it's an invalid XHTML document because it interprets the `<img>`
+		*     as an empty tag missing its closing `/`.
+		*
+		* @see https://www.w3.org/TR/xhtml1/#h-4.8
+		*/
+		if (
+			! $is_html5 &&
+			(
+				! isset( $attributes['type'] ) ||
+				'module' === $attributes['type'] ||
+				str_contains( $attributes['type'], 'javascript' ) ||
+				str_contains( $attributes['type'], 'ecmascript' ) ||
+				str_contains( $attributes['type'], 'jscript' ) ||
+				str_contains( $attributes['type'], 'livescript' )
+			)
+		) {
+			/*
+			* If the string `]]>` exists within the JavaScript it would break
+			* out of any wrapping CDATA section added here, so to start, it's
+			* necessary to escape that sequence which requires splitting the
+			* content into two CDATA sections wherever it's found.
+			*
+			* Note: it's only necessary to escape the closing `]]>` because
+			* an additional `<![CDATA[` leaves the contents unchanged.
+			*/
+			$data = str_replace( ']]>', ']]]]><![CDATA[>', $data );
+
+			// Wrap the entire escaped script inside a CDATA section.
+			$data = sprintf( "/* <![CDATA[ */\n%s\n/* ]]> */", $data );
+		}
+
+		$data = "\n" . trim( $data, "\n\r " ) . "\n";
+
+		/**
+		 * Filters attributes to be added to a script tag.
+		 *
+		 * Added for backward compatibility to support pre-5.7.0 WordPress versions.
+		 *
+		 * @since 5.7.0
+		 *
+		 * @param array  $attributes Key-value pairs representing `<script>` tag attributes.
+		 *                           Only the attribute name is added to the `<script>` tag for
+		 *                           entries with a boolean value, and that are true.
+		 * @param string $data       Inline data.
+		 */
+		$attributes = apply_filters( 'wp_inline_script_attributes', $attributes, $data );
+
+		return sprintf( "<script%s>%s</script>\n", wp_sanitize_script_attributes( $attributes ), $data );
+	}
+}
+
+if ( ! function_exists( 'wp_print_inline_script_tag' ) ) {
+	/**
+	 * Prints an inline script tag.
+	 *
+	 * It is possible to inject attributes in the `<script>` tag via the {@see 'wp_inline_script_attributes'} filter.
+	 * Automatically injects type attribute if needed.
+	 *
+	 * @since 5.7.0
+	 *
+	 * @param string $data       Data for script tag: JavaScript, importmap, speculationrules, etc.
+	 * @param array  $attributes Optional. Key-value pairs representing `<script>` tag attributes.
+	 */
+	function wp_print_inline_script_tag( $data, $attributes = array() ) {
+		echo wp_get_inline_script_tag( $data, $attributes );
+	}
+}
diff --git a/src/wp-content/themes/twentysixteen/functions.php b/src/wp-content/themes/twentysixteen/functions.php
index 49b3f2cb9ad01..20fc112d6b694 100644
--- a/src/wp-content/themes/twentysixteen/functions.php
+++ b/src/wp-content/themes/twentysixteen/functions.php
@@ -373,7 +373,7 @@ function twentysixteen_fonts_url() {
  * @since Twenty Sixteen 1.0
  */
 function twentysixteen_javascript_detection() {
-	echo "<script>(function(html){html.className = html.className.replace(/\bno-js\b/,'js')})(document.documentElement);</script>\n";
+	wp_print_inline_script_tag( "(function(html){html.className = html.className.replace(/\bno-js\b/,'js')})(document.documentElement);" );
 }
 add_action( 'wp_head', 'twentysixteen_javascript_detection', 0 );
 
@@ -622,3 +622,115 @@ function twentysixteen_widget_tag_cloud_args( $args ) {
 	return $args;
 }
 add_filter( 'widget_tag_cloud_args', 'twentysixteen_widget_tag_cloud_args' );
+
+if ( ! function_exists( 'wp_get_inline_script_tag' ) ) {
+	/**
+	 * Constructs an inline script tag.
+	 *
+	 * It is possible to inject attributes in the `<script>` tag via the {@see 'wp_inline_script_attributes'} filter.
+	 * Automatically injects type attribute if needed.
+	 *
+	 * Added for backward compatibility to support pre-5.7.0 WordPress versions.
+	 *
+	 * @since 5.7.0
+	 *
+	 * @param string $data       Data for script tag: JavaScript, importmap, speculationrules, etc.
+	 * @param array  $attributes Optional. Key-value pairs representing `<script>` tag attributes.
+	 * @return string String containing inline JavaScript code wrapped around `<script>` tag.
+	 */
+	function wp_get_inline_script_tag( $data, $attributes = array() ) {
+		$is_html5 = current_theme_supports( 'html5', 'script' ) || is_admin();
+		if ( ! isset( $attributes['type'] ) && ! $is_html5 ) {
+			// Keep the type attribute as the first for legacy reasons (it has always been this way in core).
+			$attributes = array_merge(
+				array( 'type' => 'text/javascript' ),
+				$attributes
+			);
+		}
+
+		/*
+		* XHTML extracts the contents of the SCRIPT element and then the XML parser
+		* decodes character references and other syntax elements. This can lead to
+		* misinterpretation of the script contents or invalid XHTML documents.
+		*
+		* Wrapping the contents in a CDATA section instructs the XML parser not to
+		* transform the contents of the SCRIPT element before passing them to the
+		* JavaScript engine.
+		*
+		* Example:
+		*
+		*     <script>console.log('&hellip;');</script>
+		*
+		*     In an HTML document this would print "&hellip;" to the console,
+		*     but in an XHTML document it would print "…" to the console.
+		*
+		*     <script>console.log('An image is <img> in HTML');</script>
+		*
+		*     In an HTML document this would print "An image is <img> in HTML",
+		*     but it's an invalid XHTML document because it interprets the `<img>`
+		*     as an empty tag missing its closing `/`.
+		*
+		* @see https://www.w3.org/TR/xhtml1/#h-4.8
+		*/
+		if (
+			! $is_html5 &&
+			(
+				! isset( $attributes['type'] ) ||
+				'module' === $attributes['type'] ||
+				str_contains( $attributes['type'], 'javascript' ) ||
+				str_contains( $attributes['type'], 'ecmascript' ) ||
+				str_contains( $attributes['type'], 'jscript' ) ||
+				str_contains( $attributes['type'], 'livescript' )
+			)
+		) {
+			/*
+			* If the string `]]>` exists within the JavaScript it would break
+			* out of any wrapping CDATA section added here, so to start, it's
+			* necessary to escape that sequence which requires splitting the
+			* content into two CDATA sections wherever it's found.
+			*
+			* Note: it's only necessary to escape the closing `]]>` because
+			* an additional `<![CDATA[` leaves the contents unchanged.
+			*/
+			$data = str_replace( ']]>', ']]]]><![CDATA[>', $data );
+
+			// Wrap the entire escaped script inside a CDATA section.
+			$data = sprintf( "/* <![CDATA[ */\n%s\n/* ]]> */", $data );
+		}
+
+		$data = "\n" . trim( $data, "\n\r " ) . "\n";
+
+		/**
+		 * Filters attributes to be added to a script tag.
+		 *
+		 * Added for backward compatibility to support pre-5.7.0 WordPress versions.
+		 *
+		 * @since 5.7.0
+		 *
+		 * @param array  $attributes Key-value pairs representing `<script>` tag attributes.
+		 *                           Only the attribute name is added to the `<script>` tag for
+		 *                           entries with a boolean value, and that are true.
+		 * @param string $data       Inline data.
+		 */
+		$attributes = apply_filters( 'wp_inline_script_attributes', $attributes, $data );
+
+		return sprintf( "<script%s>%s</script>\n", wp_sanitize_script_attributes( $attributes ), $data );
+	}
+}
+
+if ( ! function_exists( 'wp_print_inline_script_tag' ) ) {
+	/**
+	 * Prints an inline script tag.
+	 *
+	 * It is possible to inject attributes in the `<script>` tag via the {@see 'wp_inline_script_attributes'} filter.
+	 * Automatically injects type attribute if needed.
+	 *
+	 * @since 5.7.0
+	 *
+	 * @param string $data       Data for script tag: JavaScript, importmap, speculationrules, etc.
+	 * @param array  $attributes Optional. Key-value pairs representing `<script>` tag attributes.
+	 */
+	function wp_print_inline_script_tag( $data, $attributes = array() ) {
+		echo wp_get_inline_script_tag( $data, $attributes );
+	}
+}
diff --git a/src/wp-content/themes/twentytwenty/functions.php b/src/wp-content/themes/twentytwenty/functions.php
index a966f1bda719c..8857dd7dc4807 100644
--- a/src/wp-content/themes/twentytwenty/functions.php
+++ b/src/wp-content/themes/twentytwenty/functions.php
@@ -252,11 +252,7 @@ function twentytwenty_register_scripts() {
  */
 function twentytwenty_skip_link_focus_fix() {
 	// The following is minified via `terser --compress --mangle -- assets/js/skip-link-focus-fix.js`.
-	?>
-	<script>
-	/(trident|msie)/i.test(navigator.userAgent)&&document.getElementById&&window.addEventListener&&window.addEventListener("hashchange",function(){var t,e=location.hash.substring(1);/^[A-z0-9_-]+$/.test(e)&&(t=document.getElementById(e))&&(/^(?:a|select|input|button|textarea)$/i.test(t.tagName)||(t.tabIndex=-1),t.focus())},!1);
-	</script>
-	<?php
+	wp_print_inline_script_tag( '/(trident|msie)/i.test(navigator.userAgent)&&document.getElementById&&window.addEventListener&&window.addEventListener("hashchange",function(){var t,e=location.hash.substring(1);/^[A-z0-9_-]+$/.test(e)&&(t=document.getElementById(e))&&(/^(?:a|select|input|button|textarea)$/i.test(t.tagName)||(t.tabIndex=-1),t.focus())},!1) ' );
 }
 
 /**
@@ -823,3 +819,115 @@ function twentytwenty_get_elements_array() {
 	 */
 	return apply_filters( 'twentytwenty_get_elements_array', $elements );
 }
+
+if ( ! function_exists( 'wp_get_inline_script_tag' ) ) {
+	/**
+	 * Constructs an inline script tag.
+	 *
+	 * It is possible to inject attributes in the `<script>` tag via the {@see 'wp_inline_script_attributes'} filter.
+	 * Automatically injects type attribute if needed.
+	 *
+	 * Added for backward compatibility to support pre-5.7.0 WordPress versions.
+	 *
+	 * @since 5.7.0
+	 *
+	 * @param string $data       Data for script tag: JavaScript, importmap, speculationrules, etc.
+	 * @param array  $attributes Optional. Key-value pairs representing `<script>` tag attributes.
+	 * @return string String containing inline JavaScript code wrapped around `<script>` tag.
+	 */
+	function wp_get_inline_script_tag( $data, $attributes = array() ) {
+		$is_html5 = current_theme_supports( 'html5', 'script' ) || is_admin();
+		if ( ! isset( $attributes['type'] ) && ! $is_html5 ) {
+			// Keep the type attribute as the first for legacy reasons (it has always been this way in core).
+			$attributes = array_merge(
+				array( 'type' => 'text/javascript' ),
+				$attributes
+			);
+		}
+
+		/*
+		* XHTML extracts the contents of the SCRIPT element and then the XML parser
+		* decodes character references and other syntax elements. This can lead to
+		* misinterpretation of the script contents or invalid XHTML documents.
+		*
+		* Wrapping the contents in a CDATA section instructs the XML parser not to
+		* transform the contents of the SCRIPT element before passing them to the
+		* JavaScript engine.
+		*
+		* Example:
+		*
+		*     <script>console.log('&hellip;');</script>
+		*
+		*     In an HTML document this would print "&hellip;" to the console,
+		*     but in an XHTML document it would print "…" to the console.
+		*
+		*     <script>console.log('An image is <img> in HTML');</script>
+		*
+		*     In an HTML document this would print "An image is <img> in HTML",
+		*     but it's an invalid XHTML document because it interprets the `<img>`
+		*     as an empty tag missing its closing `/`.
+		*
+		* @see https://www.w3.org/TR/xhtml1/#h-4.8
+		*/
+		if (
+			! $is_html5 &&
+			(
+				! isset( $attributes['type'] ) ||
+				'module' === $attributes['type'] ||
+				str_contains( $attributes['type'], 'javascript' ) ||
+				str_contains( $attributes['type'], 'ecmascript' ) ||
+				str_contains( $attributes['type'], 'jscript' ) ||
+				str_contains( $attributes['type'], 'livescript' )
+			)
+		) {
+			/*
+			* If the string `]]>` exists within the JavaScript it would break
+			* out of any wrapping CDATA section added here, so to start, it's
+			* necessary to escape that sequence which requires splitting the
+			* content into two CDATA sections wherever it's found.
+			*
+			* Note: it's only necessary to escape the closing `]]>` because
+			* an additional `<![CDATA[` leaves the contents unchanged.
+			*/
+			$data = str_replace( ']]>', ']]]]><![CDATA[>', $data );
+
+			// Wrap the entire escaped script inside a CDATA section.
+			$data = sprintf( "/* <![CDATA[ */\n%s\n/* ]]> */", $data );
+		}
+
+		$data = "\n" . trim( $data, "\n\r " ) . "\n";
+
+		/**
+		 * Filters attributes to be added to a script tag.
+		 *
+		 * Added for backward compatibility to support pre-5.7.0 WordPress versions.
+		 *
+		 * @since 5.7.0
+		 *
+		 * @param array  $attributes Key-value pairs representing `<script>` tag attributes.
+		 *                           Only the attribute name is added to the `<script>` tag for
+		 *                           entries with a boolean value, and that are true.
+		 * @param string $data       Inline data.
+		 */
+		$attributes = apply_filters( 'wp_inline_script_attributes', $attributes, $data );
+
+		return sprintf( "<script%s>%s</script>\n", wp_sanitize_script_attributes( $attributes ), $data );
+	}
+}
+
+if ( ! function_exists( 'wp_print_inline_script_tag' ) ) {
+	/**
+	 * Prints an inline script tag.
+	 *
+	 * It is possible to inject attributes in the `<script>` tag via the {@see 'wp_inline_script_attributes'} filter.
+	 * Automatically injects type attribute if needed.
+	 *
+	 * @since 5.7.0
+	 *
+	 * @param string $data       Data for script tag: JavaScript, importmap, speculationrules, etc.
+	 * @param array  $attributes Optional. Key-value pairs representing `<script>` tag attributes.
+	 */
+	function wp_print_inline_script_tag( $data, $attributes = array() ) {
+		echo wp_get_inline_script_tag( $data, $attributes );
+	}
+}
diff --git a/src/wp-content/themes/twentytwenty/inc/template-tags.php b/src/wp-content/themes/twentytwenty/inc/template-tags.php
index 0154c11117eb8..027e9a879e7bd 100644
--- a/src/wp-content/themes/twentytwenty/inc/template-tags.php
+++ b/src/wp-content/themes/twentytwenty/inc/template-tags.php
@@ -661,9 +661,7 @@ function twentytwenty_nav_menu_social_icons( $item_output, $item, $depth, $args
  */
 function twentytwenty_no_js_class() {
 
-	?>
-	<script>document.documentElement.className = document.documentElement.className.replace( 'no-js', 'js' );</script>
-	<?php
+	wp_print_inline_script_tag( "document.documentElement.className = document.documentElement.className.replace( 'no-js', 'js' );" );
 }
 
 add_action( 'wp_head', 'twentytwenty_no_js_class' );
diff --git a/src/wp-content/themes/twentytwentyone/classes/class-twenty-twenty-one-dark-mode.php b/src/wp-content/themes/twentytwentyone/classes/class-twenty-twenty-one-dark-mode.php
index 39b3fb726fc88..9d26eef80f3fe 100644
--- a/src/wp-content/themes/twentytwentyone/classes/class-twenty-twenty-one-dark-mode.php
+++ b/src/wp-content/themes/twentytwentyone/classes/class-twenty-twenty-one-dark-mode.php
@@ -363,9 +363,12 @@ public function the_html( $attrs = array() ) {
 	 * @return void
 	 */
 	public function the_script() {
-		echo '<script>';
-		include get_template_directory() . '/assets/js/dark-mode-toggler.js'; // phpcs:ignore WPThemeReview.CoreFunctionality.FileInclude
-		echo '</script>';
+		$js_path = get_template_directory() . '/assets/js/dark-mode-toggler.js';
+
+		if ( file_exists( $js_path ) ) {
+			$script = file_get_contents( $js_path );
+			wp_print_inline_script_tag( $script );
+		}
 	}
 
 	/**
diff --git a/src/wp-content/themes/twentytwentyone/functions.php b/src/wp-content/themes/twentytwentyone/functions.php
index f163e394df734..82164b381f75b 100644
--- a/src/wp-content/themes/twentytwentyone/functions.php
+++ b/src/wp-content/themes/twentytwentyone/functions.php
@@ -493,19 +493,20 @@ function twentytwentyone_block_editor_script() {
  * @link https://git.io/vWdr2
  */
 function twenty_twenty_one_skip_link_focus_fix() {
+	$script = '';
 
 	// If SCRIPT_DEBUG is defined and true, print the unminified file.
 	if ( defined( 'SCRIPT_DEBUG' ) && SCRIPT_DEBUG ) {
-		echo '<script>';
-		include get_template_directory() . '/assets/js/skip-link-focus-fix.js';
-		echo '</script>';
+		$js_path = get_template_directory() . '/assets/js/skip-link-focus-fix.js';
+		if ( file_exists( $js_path ) ) {
+			$script = file_get_contents( $js_path );
+		}
 	} else {
 		// The following is minified via `npx terser --compress --mangle -- assets/js/skip-link-focus-fix.js`.
-		?>
-		<script>
-		/(trident|msie)/i.test(navigator.userAgent)&&document.getElementById&&window.addEventListener&&window.addEventListener("hashchange",(function(){var t,e=location.hash.substring(1);/^[A-z0-9_-]+$/.test(e)&&(t=document.getElementById(e))&&(/^(?:a|select|input|button|textarea)$/i.test(t.tagName)||(t.tabIndex=-1),t.focus())}),!1);
-		</script>
-		<?php
+		$script = '/(trident|msie)/i.test(navigator.userAgent)&&document.getElementById&&window.addEventListener&&window.addEventListener("hashchange",(function(){var t,e=location.hash.substring(1);/^[A-z0-9_-]+$/.test(e)&&(t=document.getElementById(e))&&(/^(?:a|select|input|button|textarea)$/i.test(t.tagName)||(t.tabIndex=-1),t.focus())}),!1);';
+	}
+	if ( $script ) {
+		wp_print_inline_script_tag( $script );
 	}
 }
 
@@ -630,13 +631,13 @@ function twentytwentyone_the_html_classes() {
  * @return void
  */
 function twentytwentyone_add_ie_class() {
-	?>
-	<script>
-	if ( -1 !== navigator.userAgent.indexOf( 'MSIE' ) || -1 !== navigator.appVersion.indexOf( 'Trident/' ) ) {
-		document.body.classList.add( 'is-IE' );
-	}
-	</script>
-	<?php
+	$script = "
+		if ( -1 !== navigator.userAgent.indexOf('MSIE') || -1 !== navigator.appVersion.indexOf('Trident/') ) {
+			document.body.classList.add('is-IE');
+		}
+	";
+
+	wp_print_inline_script_tag( $script );
 }
 add_action( 'wp_footer', 'twentytwentyone_add_ie_class' );
 
@@ -653,3 +654,115 @@ function wp_get_list_item_separator() {
 		return __( ', ', 'twentytwentyone' );
 	}
 endif;
+
+if ( ! function_exists( 'wp_get_inline_script_tag' ) ) {
+	/**
+	 * Constructs an inline script tag.
+	 *
+	 * It is possible to inject attributes in the `<script>` tag via the {@see 'wp_inline_script_attributes'} filter.
+	 * Automatically injects type attribute if needed.
+	 *
+	 * Added for backward compatibility to support pre-5.7.0 WordPress versions.
+	 *
+	 * @since 5.7.0
+	 *
+	 * @param string $data       Data for script tag: JavaScript, importmap, speculationrules, etc.
+	 * @param array  $attributes Optional. Key-value pairs representing `<script>` tag attributes.
+	 * @return string String containing inline JavaScript code wrapped around `<script>` tag.
+	 */
+	function wp_get_inline_script_tag( $data, $attributes = array() ) {
+		$is_html5 = current_theme_supports( 'html5', 'script' ) || is_admin();
+		if ( ! isset( $attributes['type'] ) && ! $is_html5 ) {
+			// Keep the type attribute as the first for legacy reasons (it has always been this way in core).
+			$attributes = array_merge(
+				array( 'type' => 'text/javascript' ),
+				$attributes
+			);
+		}
+
+		/*
+		* XHTML extracts the contents of the SCRIPT element and then the XML parser
+		* decodes character references and other syntax elements. This can lead to
+		* misinterpretation of the script contents or invalid XHTML documents.
+		*
+		* Wrapping the contents in a CDATA section instructs the XML parser not to
+		* transform the contents of the SCRIPT element before passing them to the
+		* JavaScript engine.
+		*
+		* Example:
+		*
+		*     <script>console.log('&hellip;');</script>
+		*
+		*     In an HTML document this would print "&hellip;" to the console,
+		*     but in an XHTML document it would print "…" to the console.
+		*
+		*     <script>console.log('An image is <img> in HTML');</script>
+		*
+		*     In an HTML document this would print "An image is <img> in HTML",
+		*     but it's an invalid XHTML document because it interprets the `<img>`
+		*     as an empty tag missing its closing `/`.
+		*
+		* @see https://www.w3.org/TR/xhtml1/#h-4.8
+		*/
+		if (
+			! $is_html5 &&
+			(
+				! isset( $attributes['type'] ) ||
+				'module' === $attributes['type'] ||
+				str_contains( $attributes['type'], 'javascript' ) ||
+				str_contains( $attributes['type'], 'ecmascript' ) ||
+				str_contains( $attributes['type'], 'jscript' ) ||
+				str_contains( $attributes['type'], 'livescript' )
+			)
+		) {
+			/*
+			* If the string `]]>` exists within the JavaScript it would break
+			* out of any wrapping CDATA section added here, so to start, it's
+			* necessary to escape that sequence which requires splitting the
+			* content into two CDATA sections wherever it's found.
+			*
+			* Note: it's only necessary to escape the closing `]]>` because
+			* an additional `<![CDATA[` leaves the contents unchanged.
+			*/
+			$data = str_replace( ']]>', ']]]]><![CDATA[>', $data );
+
+			// Wrap the entire escaped script inside a CDATA section.
+			$data = sprintf( "/* <![CDATA[ */\n%s\n/* ]]> */", $data );
+		}
+
+		$data = "\n" . trim( $data, "\n\r " ) . "\n";
+
+		/**
+		 * Filters attributes to be added to a script tag.
+		 *
+		 * Added for backward compatibility to support pre-5.7.0 WordPress versions.
+		 *
+		 * @since 5.7.0
+		 *
+		 * @param array  $attributes Key-value pairs representing `<script>` tag attributes.
+		 *                           Only the attribute name is added to the `<script>` tag for
+		 *                           entries with a boolean value, and that are true.
+		 * @param string $data       Inline data.
+		 */
+		$attributes = apply_filters( 'wp_inline_script_attributes', $attributes, $data );
+
+		return sprintf( "<script%s>%s</script>\n", wp_sanitize_script_attributes( $attributes ), $data );
+	}
+}
+
+if ( ! function_exists( 'wp_print_inline_script_tag' ) ) {
+	/**
+	 * Prints an inline script tag.
+	 *
+	 * It is possible to inject attributes in the `<script>` tag via the {@see 'wp_inline_script_attributes'} filter.
+	 * Automatically injects type attribute if needed.
+	 *
+	 * @since 5.7.0
+	 *
+	 * @param string $data       Data for script tag: JavaScript, importmap, speculationrules, etc.
+	 * @param array  $attributes Optional. Key-value pairs representing `<script>` tag attributes.
+	 */
+	function wp_print_inline_script_tag( $data, $attributes = array() ) {
+		echo wp_get_inline_script_tag( $data, $attributes );
+	}
+}
diff --git a/src/wp-content/themes/twentytwentyone/inc/template-functions.php b/src/wp-content/themes/twentytwentyone/inc/template-functions.php
index 2af8961cf40aa..0c766619764c1 100644
--- a/src/wp-content/themes/twentytwentyone/inc/template-functions.php
+++ b/src/wp-content/themes/twentytwentyone/inc/template-functions.php
@@ -74,7 +74,7 @@ function twenty_twenty_one_pingback_header() {
  * @return void
  */
 function twenty_twenty_one_supports_js() {
-	echo '<script>document.body.classList.remove("no-js");</script>';
+	wp_print_inline_script_tag( "document.body.classList.remove('no-js');" );
 }
 add_action( 'wp_footer', 'twenty_twenty_one_supports_js' );
 
