Add a procedure to prevent XSS

Add a procedure to remove the html tags from data to prevent XSS