Drupal 5 / 6 / 7 Cross Site Scripting

Hi, There is a persistent XSS in Drupal versions 5.x, 6.x and 7.x I have not yet tested Drupal 8.x due to not being fully released . The function which is vulnerable is the watchdog function, where the $message parameter does not get sanitized and you can pass through arbitrary code to be execute...