Docebo LMS version 4.0.3 suffers from a cross site scripting vulnerability.