Restructured XSS category. Updated gitignore to ignore TestClass.class.

webgoat-lessons/cross-site-scripting/src/main/resources/i18n/WebGoatLabels.properties

@@ -1,5 +1,7 @@
 # XSS success, failure messages and hints
 xss.title=Cross Site Scripting
+xss-stored.title=Cross Site Scripting (stored)
+xss-mitigation.title=Cross Site Scripting (mitigation)
 xss-reflected-5a-success=well done, but alerts aren't very impressive are they? Please continue.
 xss-reflected-5a-failure=Try again. We do want to see this specific javascript (in case you are trying to do something more fancy)
 xss-reflected-5b-success=Correct ... because <ul><li>The script was not triggered by the URL/QueryString</li><li>Even if you use the attack URL in a new tab, it won't execute (becuase of response type). Try it if you like.</li></ul>