Question 1

What characters need to be escaped in XML?

Accepted Answer

XML has five special characters that must be escaped: ampersand (&) becomes &, less-than (<) becomes <, greater-than (>) becomes >, double quote (") becomes ", and single quote/apostrophe (') becomes '.

Question 2

When should I escape XML characters?

Accepted Answer

You should escape special characters whenever you embed user-supplied or dynamic text inside XML elements or attributes. This prevents the XML parser from misinterpreting your data as markup, which could break the document structure or cause parsing errors.

Question 3

What is the difference between XML escaping and HTML entity encoding?

Accepted Answer

XML escaping uses the five predefined XML entities (&, <, >, ", '), while HTML supports a much larger set of named entities (like &copy;,  , &mdash;). Also, ' is standard in XML but was not supported in HTML 4 (it is supported in HTML5).

Question 4

Can I use CDATA sections instead of escaping?

Accepted Answer

Yes, CDATA sections (<![CDATA[ ... ]]>) allow you to include text that would otherwise need escaping. However, CDATA sections cannot be used inside attribute values and cannot contain the string ']]>' itself. Escaping individual characters is more universally applicable.

XML Escape & Unescape

How to Use XML Escape & Unescape

About XML Escaping

Frequently Asked Questions

Related Tools