Manually escape LANDING_PAGE_ABOUT.title and SITE_DESCRIPTION

templates/base.html

@@ -17,7 +17,7 @@
 
         {% from '_includes/_defaults.html' import SITE_DESCRIPTION with context %}
         {% if SITE_DESCRIPTION %}
-        <meta name="description" content="{% block head_description %}{{ SITE_DESCRIPTION }}{% endblock head_description %}" />
+        <meta name="description" content="{% block head_description %}{{ SITE_DESCRIPTION|e }}{% endblock head_description %}" />
         {% endif %}
         {% block meta_tags_in_head %}
         {% from '_includes/_defaults.html' import GOOGLE_PLUS_PROFILE_URL with context %}

templates/index.html

@@ -8,8 +8,8 @@
 {{ super() }}
 {% from '_includes/_defaults.html' import LANDING_PAGE_ABOUT with context %}
 {% if LANDING_PAGE_ABOUT and LANDING_PAGE_ABOUT.title %}
-<meta property="og:title" content="{{ LANDING_PAGE_ABOUT.title }}"/>
-<meta name="twitter:title" content="{{ LANDING_PAGE_ABOUT.title }}">
+<meta property="og:title" content="{{ LANDING_PAGE_ABOUT.title|e }}"/>
+<meta name="twitter:title" content="{{ LANDING_PAGE_ABOUT.title|e }}">
 {% else %}
 <meta property="og:title" content="{{ SITENAME|striptags|e }}"/>
 <meta name="twitter:title" content="{{ SITENAME|striptags|e }}">
@@ -17,8 +17,8 @@
 <meta property="og:url" content="{{ SITEURL }}" />
 {% from '_includes/_defaults.html' import SITE_DESCRIPTION with context %}
 {% if SITE_DESCRIPTION %}
-<meta property="og:description" content="{{SITE_DESCRIPTION}}" />
-<meta name="twitter:description" content="{{SITE_DESCRIPTION}}">
+<meta property="og:description" content="{{SITE_DESCRIPTION|e}}" />
+<meta name="twitter:description" content="{{SITE_DESCRIPTION|e}}">
 {% endif %}
 <meta property="og:site_name" content="{{ SITENAME|striptags|e }}" />
 <meta property="og:article:author" content="{{ AUTHOR }}" />