P1 - XSS

Reflected XSS test endpoint. Output is intentionally unescaped.