Allowing Users to Use JavaScript...Revisited

Hi All,

A few months ago there were some discussions here about whether to allow multisite users to run JavaScript and/or any other code.

Now that there are lots of new people in the forums, I'd like to get a new consensus on that.

Of course, the challenge is whether to allow people to use AdSense and other popular things that require JavaScript, or whether to be safe at the expense of a popular feature.

In the past, the general consensus was that it's never a good idea to allow any "free" users to run code. But the question was whether it's even a good idea for paid customers. edublogs allows it for the Pro members, working on the assumption that paid members are unlikely to run malicious code.

What does everyone think? How much of a threat is JavaScript for multisite least for paying clients?