Since the "Default HTML" input format is extremely dangerous I think we should show a warning if someone chooses it as a default and suggest that they instead create a new format based on "Filtered HTML". This new format could be setup to allow additional HTML tags but should not allow the script tag.