apache_superset is vulnerable to Cross-Site Scripting (XSS) attacks. The library does not properly render user inputs via the Upload data forms
endpoint, allowing an authenticated attacker with database connection update permissions to inject and execute malicious JavaScript.