diff --git a/modules/user/user.module b/modules/user/user.module
index d7a3be123203bf00af9a4db81c45252b5386ce2c..8592e0155b39236be4db2a541d837e119bbae32f 100644
--- a/modules/user/user.module
+++ b/modules/user/user.module
@@ -2649,7 +2649,9 @@ function _user_mail_text($key, $language = NULL, $variables = array(), $replace
   }
 
   if ($replace) {
-    return token_replace($text, $variables, array('language' => $language, 'callback' => 'user_mail_tokens'));
+    // We do not sanitize the token replacement, since the output of this
+    // replacement is intended for an e-mail message, not a web browser.
+    return token_replace($text, $variables, array('language' => $language, 'callback' => 'user_mail_tokens', 'sanitize' => FALSE));
   }
 
   return $text;