As mentioned earlier, ImageGen
2.9.0 includes an important security fix for a potential XSS (cross
site scripting) attack vector. Though no actual attacks have been
seen in the wild it is recommended that all sites update to the
Secunia has the details here.
Get the latest version of ImageGen from our.umbraco.org.