Preventing Cross-Site Scripting (XSS) and how to make your site more secure