fix: Make sure user input is not treated as safe in the oauth view (#…

…1978)

Co-authored-by: Glenn Schuurman <[email protected]>
Co-authored-by: Daniel Vaz Gaspar <[email protected]>

flask_appbuilder/templates/appbuilder/general/security/login_oauth.html

@@ -6,7 +6,7 @@
 <script type="text/javascript">
     var baseLoginUrl = "{{appbuilder.get_url_for_login}}";
     var baseRegisterUrl = "{{appbuilder.get_url_for_login}}";
-    var next = "?next=" + encodeURIComponent("{{request.args.get('next', '') | safe}}");
+    var next = "?next=" + encodeURIComponent("{{request.args.get('next', '')}}");
 
     function signin(provider) {
         window.location.href = baseLoginUrl + provider + next;