Security announcements

MSA-09-0019: SQL injection in update_record