jinja2 is vulnerable to regular expression denial of service. The regex sub-pattern [a-zA-Z0-9._-]+.[a-zA-Z0-9._-]+
used to format user content in the urlize filter consumes high process memory and can lead to an application crash.
github.com/pallets/jinja/blob/ab81fd9c277900c85da0c322a2ff9d68a235b2e6/src/jinja2/utils.py%23L20
github.com/pallets/jinja/commit/15ef8f09b659f9100610583938005a7a10472d4d
github.com/pallets/jinja/pull/1343
lists.fedoraproject.org/archives/list/[email protected]/message/PVAKCOO7VBVUBM3Q6CBBTPBFNP5NDXF4/
security.gentoo.org/glsa/202107-19