added blockquote to html tag whitelist

Author: appinteractive

server/hooks/xss.js

@@ -3,7 +3,7 @@ const _ = require('lodash');
 
 function clean (dirty) {
   dirty = sanitizeHtml(dirty, {
-    allowedTags: ['iframe', 'img', 'p', 'br', 'b', 'i', 'em', 'strong', 'a', 'pre', 'ul', 'li', 'ol', 'span'],
+    allowedTags: ['iframe', 'img', 'p', 'br', 'b', 'i', 'em', 'strong', 'a', 'pre', 'ul', 'li', 'ol', 'span', 'blockquote'],
     allowedAttributes: {
       a: ['href', 'target', 'data-*'],
       img: [ 'src' ],