diff --git a/app/assets/javascripts/discourse/lib/tooltip.js.es6 b/app/assets/javascripts/discourse/lib/tooltip.js.es6
index ef0e77bc091..1beabf6f86b 100644
--- a/app/assets/javascripts/discourse/lib/tooltip.js.es6
+++ b/app/assets/javascripts/discourse/lib/tooltip.js.es6
@@ -1,9 +1,11 @@
+import { escapeExpression } from "discourse/lib/utilities";
+
 export function showTooltip() {
   const fadeSpeed = 300;
   const tooltipID = "#discourse-tooltip";
   const $this = $(this);
   const $parent = $this.offsetParent();
-  const content = $this.attr("data-tooltip");
+  const content = escapeExpression($this.attr("data-tooltip"));
   const retina =
     window.devicePixelRatio && window.devicePixelRatio > 1
       ? "class='retina'"