XSS Mitigation - PHP

1. /**
2.  * Escape all HTML, JavaScript, and CSS
3.  *
4.  * @param string $input The input string
5.  * @param string $encoding Which character encoding are we using?
6.  * @return string
7.  */
8. function noHTML($input, $encoding = 'UTF-8') {
9.     return htmlentities($input, ENT_QUOTES | ENT_HTML5, $encoding);
10. }