Invalid HTML generated by workbench_moderation_workbench_block()

Patch works great and fixes the problem for markup.

What are you trying to do here? I do not understand the substr logic. Do you like to use strip_tags() for the message?

Looks not reliable...

Thanks for identifying this!

The invalid HTML is definitely a problem and if a patch like this is the best way to fix it then we'll go with it. I'm posting a revised patch here. It checks for '

I'm open to any opinions on which is more appropriate.

Check_plain() is not an option because that would wreck the form's markup.

Liam, I'm not following that last patch.

I also now see that my last comment had invalid html in it and was thus cut off!

I tried to say

Thanks for identifying this!

The invalid HTML is definitely a problem and if a patch like this is the best way to fix it then we'll go with it. I'm posting a revised patch here. It checks for '<form' because it's possible that a link would be used here. I've also switch the strpos instead of substr because that felt more straight forward.

I'm open to any opinions on which is more appropriate.

Check_plain() is not an option because that would wreck the form's markup.

check_plain() is just used to check if the message is plain text or HTML. If it is HTML, it goes through as-is. If it is plain text, it gets wrapped in an em element.

Ahhh, NO! All tags are converted to safe HTML. This means < become < and so on. If a %placeholder inside t() is used it get's surrounded by <em> (format_string).

Related, I'm not sure why this code is continuing to use t() since there's no real words in this text. I think this should just be calling drupal_placeholder() manually?

I cannot speak 100% for arabic/hebrew/chinese/japanese, but it's possible that we need to keep this wrapped in t().