=== WidgetShortcode ===
Contributors: JaworskiMatt
Plugin Name: WidgetShortcode
Donate link: https://widgetshortcode.com
Tags: widget, shortcode, widgetshortcode, widget shortcode, widgets, shortcodes
Requires PHP: 7.4
Requires at least: 6.0
Tested up to: 6.1.1
Stable tag: 1.0.0
License: GPLv2 or later

Adds a [widget] shortcode which enables you to output widgets anywhere you like.

== Description ==
WidgetShortcode is a WordPress plugin allowing you to turn any widget into a WordPress shortcode. The shortcodes can then be used in posts, pages, and more.

It works great in the classic WordPress editor, but also in the block editor (for widgets that don’t have a Gutenberg block) and other page builders. This way you are not limited to only sidebars and your choice of editing tools is not based on the block functionality of the plugins.

The shortcode requires a widget ID - it's provided to you right in the widget editor, for convenient copy-paste.

== Additional Parameters ==
* <strong>title</strong>: overrides the widget title. Set to 0 (zero) to disable the title completely
* <strong>container_tag</strong>: HTML tag to use for the widget container, default: <code>div</code>
* <strong>container_class</strong>: CSS classname added to the widget container, default: <code>widget %2$s</code> (Note: uses sprintf for variable substitution)
* <strong>container_id</strong>: HTML ID attribute for the widget container, default: <code>%1$s</code> (Note: uses sprintf for variable substitution)
* <strong>title_tag</strong>: HTML tag to use for the widget title wrapper, default: <code>h2</code>
* <strong>title_class</strong>: CSS classname for the widget title wrapper, default: <code>widgettitle</code>

== Changelog ==

= 1.0.0 =
* Forked from wordpress.org/plugins/widget-shortcode
* Fixed XSS vulnerability reported in https://wpscan.com/vulnerability/5117b2e9-75b5-459a-b22a-b0e1b0744bd3
* Improved code quality, new code standards, PHP 8.2 compatibility
* Renamed internal classes, constants, widget position, script handles etc. to avoid conflicts with old Widget Shortcode
* Release on WordPress.org

== Special thanks ==

* [shazdeh](https://profiles.wordpress.org/shazdeh/) for the original code
* Helen Bedd for testing
* Security researchers at [WordFence](https://wordpress.org/plugins/wordfence/) and [Lana Codes](https://lana.codes/) for insights into the original plugin's vulnerabilities