Enable cop Rails/OutputSafety to flag use of `.html_safe`
What does this MR do and why?
This MR enables Rails/OutputSafety to flag the use of .html_safe which is considered a security risk.
Contributes to gitlab-org/gitlab#408826.
Edited by Peter Leitzen