Merge pull request #3137 from r0hanSH/fix_dom_xss

Fix DOM XSS

plugin/notes/speaker-view.html

@@ -368,6 +368,10 @@
 
 				window.addEventListener( 'message', function( event ) {
 
+					if (window.location.origin !== event.origin){
+						return;
+					}
+
 					clearTimeout( connectionTimeout );
 					connectionStatus.style.display = 'none';