It seems like we might not be affected, but filing in case anyone wants to bump. A vulnerability has been reported in MediaWiki, which can be exploited by malicious people to conduct cross-site scripting attacks. Input passed to certain HTML attributes isn't properly sanitised before being returned to the user. This can be exploited to execute arbitrary script code in a user's browser session in context of a vulnerable site. The vulnerability has been reported in version 1.3.12 and 1.4.4. Prior versions may also be affected.
Versions 1.3.13 and 1.4.5 are in portage Ready for a GLSA vote
I tend to vote YES.
I vote YES too (Low)
GLSA 200506-12