diff --git a/wp-admin/includes/media.php b/wp-admin/includes/media.php
index fdf91f28be..7c7adb19ff 100644
--- a/wp-admin/includes/media.php
+++ b/wp-admin/includes/media.php
@@ -1497,8 +1497,10 @@ var addExtImage = {
html = '';
- if ( f.url.value )
- html = ''+html+'';
+ if ( f.url.value ) {
+ url = f.url.value.replace(/'/g, ''').replace(/"/g, '"').replace(//g, '>');
+ html = ''+html+'';
+ }
if ( caption )
html = '[caption id="" align="'+t.align+'" width="'+t.width+'" caption="'+caption+'"]'+html+'[/caption]';