For those who are interested in the technical specifics of how the Samy XSS worm worked, here is a link to each step and to the actual code. It's very interesting how the author tiered his attack. I have always told people to pay close attention to this vector as more code made its way into websites. This vector will only get worse as time goes on.