Generate web page from Database using AllowHtml in Asp.Net Core 2.0

Question

I have an application use Asp.Net 4.61 in which I read html from a database field Description and use it to populate my a page in my application. I do this by marking the p

Answer 1

You don't need [AllowHtml] anymore, because nobody denies HTML in ASP.NET Core 2.0:

Don't need [AllowHtml] or RequestValidationEnabled because we don't have request validation in this system

Instead, encode the output and Prevent Cross-Site Scripting