Vulnerability to cross site scripting XSS

Big fan of the plugin and has really been helping with a lot of crucial stuff. 

However, now the plugin is making the site vulnerable to cross site scripting which allows a malicious actor to inject malicious scripts, such as redirects, advertisements, and other HTML payloads into your website which will be executed when guests visit your site.

Request you to address/justify the same at the earliest.

https://patchstack.com/database/vulnerability/wc-return-warrranty/wordpress-return-and-warranty-management-system-for-woocommerce-plugin-1-2-3-cross-site-scripting-xss-vulnerability?_a_id=431

The page I need help with: [log in to see the link]