What is cross-site scripting (XSS) and its prevention measures?

Cross-site scripting (XSS) injects malicious scripts into web applications, jeopardizing user data. Implementing measures such as input validation, data escaping, and using CORS headers can mitigate XSS risks.