A case for applying the CS 2.1 Service Pack 2

We encountered a script injection attack yesterday on a CS 2.1 site that did not
have the Service Pack 1 (or 2) applied.  The attached image is supplied by the
site admin and what the attack looked like, where <Script /> code was
entered in a comment fields.  The script produced an auto-redirect to a script
located on a remote server.  Not good.  

The CS 2.1 SP1 contained a fix for this type of injection and is one of the
reasons we highly advise you to consider applying Service Packs to your sites as
soon as possible.  The site admin of this site applied the CS 2.1 SP2 and is now
immune from those types of attacks.

-Dave