Fix XSS.

Thanks to xet7 !

client/components/rules/actions/cardActions.jade

@@ -75,7 +75,7 @@ template(name="cardActions")
         button.trigger-button.trigger-button-color.js-show-color-palette(
           id="color-action"
           class="card-details-{{cardColorButton}}")
-          | {{{_ cardColorButtonText }}} // XSS?!
+          | {{_ cardColorButtonText }}
     div.trigger-button.js-set-color-action.js-goto-rules
       i.fa.fa-plus