diff --git a/poetry.lock b/poetry.lock
index 3dad0d0510..b0b6cd943b 100644
--- a/poetry.lock
+++ b/poetry.lock
@@ -419,21 +419,23 @@ uvloop = ["uvloop (>=0.15.2)"]
 
 [[package]]
 name = "bleach"
-version = "4.1.0"
+version = "6.0.0"
 description = "An easy safelist-based HTML-sanitizing tool."
 category = "main"
 optional = false
-python-versions = ">=3.6"
+python-versions = ">=3.7"
 files = [
-    {file = "bleach-4.1.0-py2.py3-none-any.whl", hash = "sha256:4d2651ab93271d1129ac9cbc679f524565cc8a1b791909c4a51eac4446a15994"},
-    {file = "bleach-4.1.0.tar.gz", hash = "sha256:0900d8b37eba61a802ee40ac0061f8c2b5dee29c1927dd1d233e075ebf5a71da"},
+    {file = "bleach-6.0.0-py3-none-any.whl", hash = "sha256:33c16e3353dbd13028ab4799a0f89a83f113405c766e9c122df8a06f5b85b3f4"},
+    {file = "bleach-6.0.0.tar.gz", hash = "sha256:1a1a85c1595e07d8db14c5f09f09e6433502c51c595970edc090551f0db99414"},
 ]
 
 [package.dependencies]
-packaging = "*"
 six = ">=1.9.0"
 webencodings = "*"
 
+[package.extras]
+css = ["tinycss2 (>=1.1.0,<1.2)"]
+
 [[package]]
 name = "blinker"
 version = "1.6.2"
@@ -5139,4 +5141,4 @@ testing = ["coverage (>=5.0.3)", "zope.event", "zope.testing"]
 [metadata]
 lock-version = "2.0"
 python-versions = "^3.8,<3.10"
-content-hash = "c68ca8eef062e9c038d884eaf2aa865caf8aeaf9e8ca224504ee38805530e4fb"
+content-hash = "b73d154976c8155795720b0640a514839eba686b6b0cd0ebc4c4a4c6c0fd47a1"
diff --git a/pyproject.toml b/pyproject.toml
index 3ff87dd67e..8fb1deb507 100644
--- a/pyproject.toml
+++ b/pyproject.toml
@@ -71,7 +71,7 @@ gunicorn = "20.1.0"
 boto = "2.49"
 geoip2 = "4.7.0"
 SQLAlchemy-Continuum = "1.3.12"
-bleach = "4.1.0"
+bleach = "6.0.0"
 stripe = "3.0.0"
 xhtml2pdf = "0.2.6"
 flask-caching = "2.0.2"