Cross-Site Scripting (XSS)

Can you explain Cross-Site Scripting and how we can keep it from happening?