Drupal - SA-CONTRIB-2009-085 - Insert Node - Cross Site Scripting

http://drupal.org/node/617400

"Description

The Insert Node module provides an input filter that enables a node to
be inserted within the body field of another node.

The module fails to sanitize the inserted node, making it vulnerable to
a cross site scripting (XSS) attack.
Versions affected

* Insert Node module versions for Drupal 5.x prior to Insert Node
5.x-1.2

Drupal core is not affected. If you do not use the contributed Insert
Node module, there is nothing you need to do.
Solution

Install the latest version.

* If you use the Insert Node module for Drupal 6.x there is nothing
you need to do.
* If you use the Insert Node module for Drupal 5.x upgrade to Insert
Node 5.x-1.2"