Status CVE-2022-27263 (cross-site scripting)

Would it be possible to receive information about a (possible) fix for CVE-2022-27263?
https://nvd.nist.gov/vuln/detail/CVE-2022-27263#VulnChangeHistorySection
"The application is vulnerable to cross-site scripting via the upload functionality. It is possible
to upload Javascript and HTML files, the script will run at
accessing the newly uploaded html page"