Sanitize app descriptions and render a subset of their HTML

Currently, app descriptions seem to include HTML. We escape this, and show the HTML tags. Instead, we should sanitize the HTML and filter out all but a few allowed HTML tags and then render those properly.

Admin message

Admin message

Sanitize app descriptions and render a subset of their HTML