In the abuse filter log (Special:AbuseLog), the description of the filter (see line 769 and 826 of "includes/special/SpecialAbuseLog.php" in AbuseFilter extension), should not be parsed.
- Mentioned In
- T173249: AbuseFilter abusefilter-warning rendered with <div class="mw-parser-output"> in text
T182213: [Clonable] replace wfMessage()->rawParams() with wfMessage()->plaintextParams() where applicable
- Mentioned Here
- T26309: Some interface messages are broken if filter name contains template syntax
This is probably not a security issue, unless you see the same thing somewhere else too. From what I see, at worst it makes viewing some logs annoying. The filter descriptions can only be edited by trusted users.