I've highly customized my php files, so I'd rather not upgrade.. I just want to add the filter enhancements to help prevent XSS attacks so I'm going to do it manually.
After looking at the diff logs I want to make sure I'm doing it right. I'm assuming red means deleted and green means added? All three patches made changes to formatting.php so it's sort of confusing.
Are the fixes mentioned on this page the only changes in 2.7.1 that help prevent hacks?