I was able to insert this code into almost any field on my About Me page:
The only restriction was the field length.
And the script works and displays alert. As you could know malicious person might get access to a user's session using this.
Is there a way to escape
< > chars in the user input?