Hi, does anyone face issues like <script> tags are converting to <invalidTag> in index.cfm page only? recently upgraded to CF 2021, but need to install the latest patch. Can anyone please help me on this to find the root cause?

@GVJustDOIT Check the ColdFusion Administrator under the Server Settings > Settings: Enable Global Script Protection. If checked, and not overwritten by the Application.cfc, this will remove script tags from form submissions.

Have you googled about it? There are plenty of good posts available in the internet. Don't just set the setting in the admin to allow it, because you might expose your app to other XSS attacks. Rather try to identify in which scope its being overwritten and decide then the next step.