add documentation for UnsafeContent

stephenlacy · stephenlacy · commit 1dae00cf6663 · 2021-03-28T22:57:10.000-07:00
diff --git a/README.md b/README.md
@@ -83,3 +83,13 @@ Attr{
 	"onClick": "javascriptFunc()",
 }
 ```
+
+#### func `UnsafeContent`
+
+This will bypass HTML sanitization and allow for direct injecting
+```golang
+
+injection := "<script>alert('xss')</script>"
+root := H("div", UnsafeContent(injection))
+// <script>alert('xss')</script>
+```
