I've got a textbox that users can enter search queries into, but if they are sneaky and enter html tags, it mucks up the results page.
How can I make tags come out as written rather than being processed by the browser, so if they type "<font color="#0000ff">hello</font>" it prints "<font color="#0000ff">hello</font>" rather than "hello"?
