@david.rand this could be caused by some anti-malware software not liking the content of the data being submitted.
Do you have the wordpress wordfence plugin? That has a firewall component which might be the cause.
Another possibility is the apache mod security module.