If you trust this link, click it to continue.
https://infosecwriteups.com/bypassing-filters-via-xml-encoding-to-perform-sql-injection-for-bug-hunting-with-with-burpsuite-1db9b7b486e8?source=rss----7b722bfd1b8d---4
