use CGI;
  ...
  $url_escaped = CGI::escape($url_text);