This vector shows if a character is allowed in an entity. Firefox did that in the past
<a href="javascript&colo$[chr]n;abcd" id="x">f</a>0x0D
try{0x0D if(x.protocol == "javascript:")log($[i])0x0D }catch(e){}
1
1
1