I couldn't agree more with you Jade. I'd prefer the toolkit to be as safe as possible by default. Since when is "high usability" equal to "low security"? We need "high" of both.
Also there was a discussion on a similar topic (allowing IMG tags and SRC attributes in postings) over here:
https://openacs.org/forums/message-view?message_id=182057