display of description impossible by htmlhelper

[opto]

I think the helper replaces the htmlspecialchars, so a strong will not be displayed as bold, but rather the html will be displayed as plain text.
Replacing the helper (only for description) with an echo of the descriptiion displays the formatted note

[caseysoftware]

I've been playing with this one.

If we don't filter all html, we can run into problems when someone inserts a script tag (or worse). I'm happy to consider a better approach.

[opto]

I solved this by not using htmlhelper and writing into a div (I think it was a div).
If the user cannot switch off tinymce or ckeditor, this should be save - the only way to insert foreign html would be from the db.
I think the editors only insert those tags which are ok. I don't think they would insert script tags.
It would be a problem if the user could switch between the editor and a textarea while it is displayed as html. Then he could insert arbitrary tags.

[opto]

if we filter all html, there is no use for having an html editor ...

[caseysoftware]

Alternatively, what if we used a whitelist of tags?

We would need: b, strong, i, em, ul, ol, li, p, blockquote, and... what else?