diff --git a/static/js/grid_loader.js b/static/js/grid_loader.js
index f203bd7..39ba154 100644
--- a/static/js/grid_loader.js
+++ b/static/js/grid_loader.js
@@ -88,11 +88,20 @@ const insertGame = (gridboxnum, game) => {
 const insertLeague = (league) => {
     var btn = document.createElement("BUTTON");
     btn.className = "filter";
-    btn.innerHTML = league;
+    btn.innerHTML = escapeHtml(league);
     $('#filters').append(btn);
     return btn;
 }
 
+function escapeHtml(unsafe) {
+    return unsafe
+         .replace(/&/g, "&")
+         .replace(/</g, "&lt;")
+         .replace(/>/g, "&gt;")
+         .replace(/"/g, "&quot;")
+         .replace(/'/g, "&#039;");
+ }
+
 const clearBox = (box) => {
     box.className = "emptyslot";
     box.timestamp = null;