Index: /branches/4.9/src/wp-includes/comment.php
===================================================================
--- /branches/4.9/src/wp-includes/comment.php (revision 43269)
+++ /branches/4.9/src/wp-includes/comment.php (revision 43270)
@@ -3238,5 +3238,9 @@
case 'comment_link':
$value = get_comment_link( $comment->comment_ID );
- $value = '' . $value . '';
+ $value = sprintf(
+ '%s',
+ esc_url( $value ),
+ esc_html( $value )
+ );
break;
}