LinkedIn Oncall through 1.4.0 allows reflected XSS via /query because of mishandling of the «No results found for» message in the search bar.
