An XSS WAF Bypass was successfully achieved using the payload: <a+href=bro onclick=top['al\x65rt'](origin);>Bro. This payload was used to bypass a WAF recently. It is recommended to add this to your reference list. More details can be found at #bugbounty #bugbountytips #bugbountytip #bughunter.
Check out the original tweet here: https://twitter.com/grumpzsux/status/1814840724644401458