Update SelectBox.js DOM text reinterpreted as HTML

[Shivam7-1]

By using innerText, it will avoid the risk of HTML injection, as these properties automatically escape any HTML special characters in the provided text. This helps prevent cross-site scripting (XSS) vulnerabilities by treating the input as plain text rather than interpreted HTML.

Checklist

• This PR targets the main branch.
• The commit message is written in past tense, mentions the ticket number, and ends with a period.
• I have checked the "Has patch" ticket flag in the Trac system.
• I have added or updated relevant tests.
• I have added or updated relevant docs, including release notes if applicable.
• I have attached screenshots in both light and dark modes for any UI changes.

[github-actions]

Hello! Thank you for your contribution 💪

As it's your first contribution be sure to check out the patch review checklist.

If you're fixing a ticket from Trac make sure to set the "Has patch" flag and include a link to this PR in the ticket!

If you have any design or process questions then you can ask in the Django forum.

Welcome aboard ⛵️!

[Shivam7-1]

Hi @sarahboyce Could You Please Review This PR
Thanks

[sarahboyce]

This is assigning the content to an empty string rather than some users input. So I don't see how this is a vulnerability.
If you believe you have found a security vulnerability, you should send an email to security@djangoproject.com (see details) and keep it private.