diff --git a/CHANGELOG b/CHANGELOG
index 6838876d7..5c609d3ac 100644
--- a/CHANGELOG
+++ b/CHANGELOG
@@ -2,7 +2,7 @@
   - [entity]:
     - [future tense verb] [feature]
   - Upgraded gems:
-    - font-awesome-sass, rails
+    - font-awesome-sass, nokogiri, rails, sanitize
   - Bugs fixes:
     - QA: Enable @mentions and formatting toolbar for comments in QA show views
     - [entity]:
diff --git a/Gemfile b/Gemfile
index 3c63fc92e..d56d839ac 100644
--- a/Gemfile
+++ b/Gemfile
@@ -101,7 +101,7 @@ gem 'RedCloth', '~> 4.3.2', require: 'redcloth'
 gem 'rinku'
 
 # html-pipeline dependency for html sanitization
-gem 'sanitize', '6.0.1'
+gem 'sanitize', '6.0.2'
 
 # SQLite3 DB driver
 gem 'sqlite3'
diff --git a/Gemfile.lock b/Gemfile.lock
index f474b8d68..6ab509b04 100644
--- a/Gemfile.lock
+++ b/Gemfile.lock
@@ -302,14 +302,14 @@ GEM
     net-smtp (0.3.3)
       net-protocol
     nio4r (2.5.9)
-    nokogiri (1.15.2)
+    nokogiri (1.15.3)
       mini_portile2 (~> 2.8.2)
       racc (~> 1.4)
-    nokogiri (1.15.2-arm64-darwin)
+    nokogiri (1.15.3-arm64-darwin)
       racc (~> 1.4)
-    nokogiri (1.15.2-x86_64-darwin)
+    nokogiri (1.15.3-x86_64-darwin)
       racc (~> 1.4)
-    nokogiri (1.15.2-x86_64-linux)
+    nokogiri (1.15.3-x86_64-linux)
       racc (~> 1.4)
     notiffany (0.1.3)
       nenv (~> 0.1)
@@ -436,7 +436,7 @@ GEM
     ruby_audit (2.1.0)
       bundler-audit (~> 0.9.0)
     rubyzip (2.3.2)
-    sanitize (6.0.1)
+    sanitize (6.0.2)
       crass (~> 1.0.2)
       nokogiri (>= 1.12.0)
     sass-rails (6.0.0)
@@ -597,7 +597,7 @@ DEPENDENCIES
   rubocop
   ruby_audit
   rubyzip (>= 1.2.2)
-  sanitize (= 6.0.1)
+  sanitize (= 6.0.2)
   sass-rails (~> 6.0)
   selenium-webdriver
   shoulda-matchers (~> 3.1)