Cross-Site Scripting (XSS) Vulnerability in Activity Stream for Tags

It is possible to construct a Tags-URL, which exploits a XSS-Vulnerability:

www.xwiki.org/xwiki/bin/view/Main/Tags?do=viewTag&tag=%3Cscript%3Ealert(%27hello%27)%3B%3C%2Fscript%3E