<a href="http://www.w3schools.com/jsref/met_win_open.asp? value=<%=EASPI.getEncoder().encodeForURL(request.getParameter("value"))%>" onclick="window.open(this.href, 'w3c','location=no'); return false;">Window.open() Method</a>
The above simplifies the required encoding by removing the deep nesting of various contexts within the DOM. It is important to note that the onclick method must "return false;" in this scenario to prevent the window or frame from navigating to the URL specified.
Authors and Primary Editors
Jeremy Long - jeremy.long [at] owasp.org