defines attribute values which contain an XPath expression.

Any XPath expression using the syntax defined in .

When writing programs that evaluate XPath expressions, programmers should be mindful of the possibility of malicious code injection attacks. For further information about XPath injection attacks, see the article at OWASP.