HTML Escape/Unescape

Escape HTML special characters to prevent XSS, or unescape HTML entities back to text.