check_render_inline.rb in brakeman-4.4.0

- old
+ new

@@ -24,10 +24,10 @@
 
         if input = has_immediate_user_input?(render_value)
           warn :result => result,
             :warning_type => "Cross-Site Scripting",
             :warning_code => :cross_site_scripting_inline,
-            :message => "Unescaped #{friendly_type_of input} rendered inline",
+            :message => msg("Unescaped ", msg_input(input), " rendered inline"),
             :user_input => input,
             :confidence => :high
         elsif input = has_immediate_model?(render_value)
           warn :result => result,
             :warning_type => "Cross-Site Scripting",