python import markupsafe input_str = "<script>alert('XSS')</script>" escaped_str = markupsafe.escape(input_str) python from flask import Flask, render_template import markupsafe app = Flask(__name__) @app.route('/') def index(): user_input = get_user_input() escaped_input = markupsafe.escape(user_input) return render_template('index.html', input=escaped_input) if __name__ == '__main__': app.run()