Shutting Down XSS with Content Security Policy
http://blog.mozilla.com/security/2009/06/19/shutting-down-xss-with-content-…
I'm usually the first to complain about applying technical solutions
to problems which are not fundamentally technical... but this looks
like it would be reasonably expedient to implement.
While it won't be effective for all users the detection functionality
would be a big improvement in wrangling these problems across the
hundreds of Wikimedia projects, many of which lack reasonable
oversight of their sysop activities.