diff --git a/composer.json b/composer.json
index 3ba02fe23574b8fd1a8f91a2b95c09a4a4fdb6d5..c4e6720468566e7f4854fc5ecdff2b96e59baf9d 100644
--- a/composer.json
+++ b/composer.json
@@ -97,7 +97,7 @@
 		"typo3/class-alias-loader": "^1.1.4",
 		"typo3/cms-cli": "^3.1",
 		"typo3/cms-composer-installers": "^2.0 || ^3.0 || ^4.0",
-		"typo3/html-sanitizer": "^2.1.2",
+		"typo3/html-sanitizer": "^2.1.3",
 		"typo3/phar-stream-wrapper": "^3.1.7",
 		"typo3/symfony-psr-event-dispatcher-adapter": "^1.0 || ^2.0",
 		"typo3fluid/fluid": "^2.7.2"
diff --git a/composer.lock b/composer.lock
index c7d41687312936ab9e8b922b18ec621c1bcaa8f7..199182bea8bdc1690daae248f47e2f16282fec80 100644
--- a/composer.lock
+++ b/composer.lock
@@ -4,7 +4,7 @@
         "Read more about it at https://getcomposer.org/doc/01-basic-usage.md#installing-dependencies",
         "This file is @generated automatically"
     ],
-    "content-hash": "56f3e796b3b46b7216f3632f532fe5da",
+    "content-hash": "bee169e1a3c2fe0ed65f47fd01bcca86",
     "packages": [
         {
             "name": "bacon/bacon-qr-code",
@@ -5006,16 +5006,16 @@
         },
         {
             "name": "typo3/html-sanitizer",
-            "version": "v2.1.2",
+            "version": "v2.1.3",
             "source": {
                 "type": "git",
                 "url": "https://github.com/TYPO3/html-sanitizer.git",
-                "reference": "e3026f589fef0be8c3574ee3f0a0bfbe33d7ebdb"
+                "reference": "a35f220b2336e3f040f91d3de23d19964833643f"
             },
             "dist": {
                 "type": "zip",
-                "url": "https://api.github.com/repos/TYPO3/html-sanitizer/zipball/e3026f589fef0be8c3574ee3f0a0bfbe33d7ebdb",
-                "reference": "e3026f589fef0be8c3574ee3f0a0bfbe33d7ebdb",
+                "url": "https://api.github.com/repos/TYPO3/html-sanitizer/zipball/a35f220b2336e3f040f91d3de23d19964833643f",
+                "reference": "a35f220b2336e3f040f91d3de23d19964833643f",
                 "shasum": ""
             },
             "require": {
@@ -5051,9 +5051,9 @@
             "description": "HTML sanitizer aiming to provide XSS-safe markup based on explicitly allowed tags, attributes and values.",
             "support": {
                 "issues": "https://github.com/TYPO3/html-sanitizer/issues",
-                "source": "https://github.com/TYPO3/html-sanitizer/tree/v2.1.2"
+                "source": "https://github.com/TYPO3/html-sanitizer/tree/v2.1.3"
             },
-            "time": "2023-07-25T07:14:55+00:00"
+            "time": "2023-07-25T08:47:32+00:00"
         },
         {
             "name": "typo3/phar-stream-wrapper",
diff --git a/typo3/sysext/core/composer.json b/typo3/sysext/core/composer.json
index 0e39707e923a1b829ded256d87a663a4f3d1d770..4960d08d5d50b1a4ca0151342ef77a0212e228ef 100644
--- a/typo3/sysext/core/composer.json
+++ b/typo3/sysext/core/composer.json
@@ -73,7 +73,7 @@
 		"typo3/class-alias-loader": "^1.1.4",
 		"typo3/cms-cli": "^3.1",
 		"typo3/cms-composer-installers": "^2.0 || ^3.0 || ^4.0",
-		"typo3/html-sanitizer": "^2.1.2",
+		"typo3/html-sanitizer": "^2.1.3",
 		"typo3/phar-stream-wrapper": "^3.1.7",
 		"typo3/symfony-psr-event-dispatcher-adapter": "^1.0 || ^2.0",
 		"typo3fluid/fluid": "^2.7.2"