[jQuery] html() does unexpected escaping:

[mikerobi]

In the following example: the src attribute is escaped but not the
class attribute.  I wouldn't expect any escaping.

$('<div><img src="{p1}" class="{p2}"/></div>').html())