From 136df0f26285e6dabc1e44ee7b459082028a1a58 Mon Sep 17 00:00:00 2001
From: westi <westi@1a063a9b-81f0-0310-95a4-ce76da25c4cd>
Date: Mon, 8 Nov 2010 17:15:14 +0000
Subject: [PATCH] Encode quotes and chevrons in the HTML editor version of the
 generated captions too. Fixes #15343.

git-svn-id: http://svn.automattic.com/wordpress/trunk@16236 1a063a9b-81f0-0310-95a4-ce76da25c4cd
---
 wp-admin/includes/media.php | 5 +++++
 1 file changed, 5 insertions(+)

diff --git a/wp-admin/includes/media.php b/wp-admin/includes/media.php
index 5ead282a13..ad1728b732 100644
--- a/wp-admin/includes/media.php
+++ b/wp-admin/includes/media.php
@@ -140,6 +140,11 @@ function image_add_caption( $html, $id, $caption, $title, $align, $url, $size, $
 
 	$width = $matches[1];
 
+	$caption = str_replace(	array( '>',		'<',	'"',		"'" ),
+							array( '&gt;',	'&lt;',	'&quot;',	'&#039;' ),
+							$caption
+						  );
+	
 	$html = preg_replace( '/(class=["\'][^\'"]*)align(none|left|right|center)\s?/', '$1', $html );
 	if ( empty($align) )
 		$align = 'none';