In MISP 2.4.134, XSS exists in the template element index view because the id parameter is mishandled.
misp misp 2.4.134