[BUG] Brave unescapes angle brackets in attributes

DRANK

Description of the issue: If you set HTML with attributes that contain escaped HTML code, when you get the HTML code the tags are unescaped. How can this issue be reproduced? If you use this: x.innerHTML = '<span data-text="&gt;&nbsp;"><span>&gt;&nbsp;</span></span>'; x.innerHTML = ' ' + x.innerHTML; The > before &nbsp; is not escaped. You end up with broken HTML. If you console.log the innerHTML you get this code: <span data-text=">&nbsp;"><span>&gt;&nbsp;</span></span> Expected result...