Fix HTML-reserved characters ('&', '<', etc) not rendered correctly in entry preview

[HoussemNasri]

Fix #10677

TODO

• Add test case

Screenshots

Mandatory checks

• Change in CHANGELOG.md described in a way that is understandable for the average user (if applicable)
• Tests created for changes (if applicable)
• Manually tested changed features in running JabRef (always required)
• Screenshots added in PR description (for UI changes)
• Checked developer's documentation: Is the information available and up to date? If not, I outlined it in this pull request.
• Checked documentation: Is the information available and up to date? If not, I created an issue at https://github.com/JabRef/user-documentation/issues or, even better, I submitted a pull request to the documentation repository.

[calixtus]

Looks good so far, how about some simple tests?

[koppor]

I have one minor feedback (also via /review by Codium

Consider using a compiled Pattern for the regex in normalizedFiled method to improve performance.

private static final Pattern HTML_ENTITY_PATTERN = Pattern.compile("&(?!(?:[a-z0-9]+|#[0-9]{1,6}|#x[0-9a-fA-F]{1,6});)");

private String normalizedFiled(String inField) {
    // When we encounter a '&' we check if it starts an HTML entity then we skip it, otherwise
    // we should replace it with '&' to be rendered correctly.
    return HTML_ENTITY_PATTERN.matcher(inField).replaceAll("&") // Replace & with & if it does not begin an HTML entity
                  .replaceAll("\\\\&", "&") // Replace \& with &
                  .replaceAll("[\\n]{2,}", "<p>") // Replace double line breaks with <p>
                  .replace("\n", "<br>") // Replace single line breaks with <br>
                  .replace("\\$", "&dollar;") // Replace \$ with &dollar;
                  .replaceAll("\\$([^$]*)\\$", "\\{$1\\}");
}

---

Two "major" things:

1. Refactor HTMLCharsTest to use @ParamterizedTest. I think, with OpenAI, this is just an exercise how to use OpenAI ^^. -- That would also allow "easy" addition of the test covering the changed functionality.
2. A comment that Apache Common's escapeHtml4 is not a smart escaping and does not handle LaTeX characters adn commands

[Siedlerchr]

Thanks for the follow up!