the contact messages that in our platforms are vulnerable to XSS attack !, I already reported that. also we need to be able to delete the inject messages to solve the issue ! but no delete option there in publisher/setting/contact