Test coverage to simulate and prevent XSS and dangerous node injection

[sidiousvic]

Tests should expand to cover the newly implemented sanitizer (#13).

Start by simulating naive XSS attacks such as <img src="x" onerror="alert(0)"> or using an <iframe> element inside a phantom component.

<canvas/> elements should be allowed. May need to update sanitizer.