Escape substitution placeholders to avoid input collisions

This is a known low impact vulnerability and/or bug that probably is shared with Python-Markdown.

An attacker could add an input which some of its characters match placeholder content. To avoid this, escape placeholder characters in input with `text.replace(STX, '\\u0002').replace(ETX, '\\u0003')`, so they never find raw STX nor ETX.