Hotfix login (#4680)

* FIx XSS Sanitize

* Don't sanitize password

frappe/templates/includes/login/login.js

@@ -18,7 +18,7 @@ login.bind_events = function() {
 		var args = {};
 		args.cmd = "login";
 		args.usr = frappe.utils.xss_sanitise(($("#login_email").val() || "").trim());
-		args.pwd = frappe.utils.xss_sanitise($("#login_password").val());
+		args.pwd = $("#login_password").val();
 		args.device = "desktop";
 		if(!args.usr || !args.pwd) {
 			frappe.msgprint("{{ _("Both login and password required") }}");