diff --git a/docs/changelog/6.x.x.txt b/docs/changelog/6.x.x.txt
index b09386225..31e0b5161 100644
--- a/docs/changelog/6.x.x.txt
+++ b/docs/changelog/6.x.x.txt
@@ -10,6 +10,7 @@
 		   the patch)
  - fix [ 1404485 ] userDefined1 to 5 onlineHelp
  - fix [ 1403155 ] Poll shows no result
+ - fix [ 1373583 ] ITransact Module does not URL encode data within XML
 
 6.8.4
  - fix [ 1395371 ] XSS Vulnerability in DataForm Entries
diff --git a/lib/WebGUI/Commerce/Payment/ITransact.pm b/lib/WebGUI/Commerce/Payment/ITransact.pm
index 3100a6d3d..4ae25e636 100644
--- a/lib/WebGUI/Commerce/Payment/ITransact.pm
+++ b/lib/WebGUI/Commerce/Payment/ITransact.pm
@@ -586,7 +586,7 @@ sub normalTransaction {
 		$self->{_recurring} = 0;
 		$self->{_transactionParams} = {
 			AMT		=> sprintf('%.2f', $normal->{amount}),
-			DESCRIPTION	=> $normal->{description} || $i18n->get('no description'),
+			DESCRIPTION	=> WebGUI::URL::escape($normal->{description}) || $i18n->get('no description'),
 			INVOICENUMBER	=> $normal->{invoiceNumber},
 			ORGID		=> $normal->{id},
 		};
@@ -614,7 +614,7 @@ sub recurringTransaction {
 			INITIALAMT	=> sprintf('%.2f', $initialAmount),
 			TERM		=> $recurring->{term} || 9999,
 			RECIPE		=> _resolveRecipe($recurring->{payPeriod}),
-			DESCRIPTION	=> $recurring->{description} || $i18n->get('no description'),
+			DESCRIPTION	=> WebGUI::URL::escape($recurring->{description}) || $i18n->get('no description'),
 			INVOICENUMBER	=> $recurring->{invoiceNumber},
 			ORGID		=> $recurring->{id},
 		};