Escape one remaining translation string #19
Description
The following is the only remaining unescaped translation string. Escaping this will avoid anyone being able to hack into sites via the translation system.
__( 'Posted on <a href="%1$s" title="%2$s" rel="bookmark"><time class="entry-date updated" datetime="%3$s">%4$s</time></a><span class="byline"> by <span class="author vcard"><a class="url fn n" href="%5$s" title="%6$s" rel="author">%7$s</a></span></span>', 'hellish-simplicity' ),
This is not an urgent security patch, since almost no other themes bother covering this security hole either.