I never thought I would experience a XSS on Google Search. But Masato Kinugawa blew my mind!
This is a video going over the difficulties of sanitizing HTML in JavaScript.
The fix can be found here: https://github.com/google/closure-library/commit/c79ab48e8e962fee57e68739c00e16b9934c0ffa