Source: https://owasp.org/www-pdf-archive/XML_Based_Attacks_-_OWASP.pdf