Import Release Notes for 1.8.6-GA

Run XSS vulnerability validation on imported data. Enabled by default, it can be disabled by setting the property broadleaf.import.service.xssValidation.enabled to false. The actual validation is done by com.broadleafcommerce.resource.security.xss.service.XSSRequestProcessingService.