#4501 (ok 4.0.10.2) XSS in table browse page

[Madhura Jayaratne]

Steps: In table browse page, try to delete a row from a table where either the database name, table name or a column name is crafted ()

Affected versions: 4.0.x, 4.1.x, 4.2.x

Problematic line: sql.js L122 (in QA_4_2) "var question = $.sprintf(PMA_messages.strDoYouReally, $(this).closest('td').find('div').text());"