XHTML is not a thing anymore, remove <!--//--><![CDATA[//><!-- //--><!]]> for escaping inline JS/CSS

Fixed in #1021622: Improper escaping of CDATA for inline css

This was incorrectly marked as a duplicate; the referenced issue fixed incorrect auto-escaping, where this issue is about removing CDATA statements completely.

Nice writeup on CSS Tricks: https://css-tricks.com/the-script-tag/.

Unless somebody is using Drupal 8 to create an XHTML site, which they should not be doing, we do not need CDATA.

From YesCT: ag CDATA core --ignore="core/vendor" --ignore="test" --ignore="*Test.php" --ignore="*.js" might be a good way to search for CDATA, though we do need to allow Test files.

CDATA is found in
/core/lib/Drupal/Core/Asset/JsCollectionRenderer.php
and
core/lib/Drupal/Component/Utility/Html.php

I got a bit carried away on my path in #10. The scope of this issue is to remove CDATA tags from inline CSS/JS.

@nod_ are you sure? That issue looks like it's adding CDATA stuff not removing it.

I was just made aware of this issue this morning.

Looking at the patch on #2510104, it does look like it got rid of the same CDATA lines we were trying to get rid of here.

Re-opening must have been a mistake.

Note #2550467: Remove #value_prefix and #value_suffix from HtmlTag has work on it and removes CDATA.

so #2550467: Remove #value_prefix and #value_suffix from HtmlTag is doing more, but also doing what this was going to do.
marking duplicate.

(might be good to credit the people who worked on this there.)

Note that the wrapping of drupal settings in JSON was removed by #2510104: Convert drupalSettings from JavaScript to JSON, to allow for CSP in the future and all the code changed in the last patch on this issue was removed in that issue.