diff --git a/wp-admin/includes/template.php b/wp-admin/includes/template.php
index a6b4335170..3da61e6483 100644
--- a/wp-admin/includes/template.php
+++ b/wp-admin/includes/template.php
@@ -82,7 +82,7 @@ function _cat_row( $category, $level, $name_override = false ) {
$name = ( $name_override ? $name_override : $pad . ' ' . $category->name );
$edit_link = "categories.php?action=edit&cat_ID=$category->term_id";
if ( current_user_can( 'manage_categories' ) ) {
- $edit = "name)) . "'>$name
";
+ $edit = "name)) . "'>" . attribute_escape( $name ) . '
';
$actions = array();
$actions['edit'] = '' . __('Edit') . '';
if ( $default_cat_id != $category->term_id )
@@ -131,6 +131,9 @@ function _cat_row( $category, $level, $name_override = false ) {
case 'description':
$output .= "