Input -Desinfektion, um XSS zu verhindern

$name = $_GET["name"];
$safename = htmlspecialchars($name);
echo "Welcome $safename";
Worrisome Wolf