Two cross site scripting security fixes have been applied to the HTML
output. New features include the ability to cloak email addresses inside
the script and to specify how the field aliases are applied (HTML,
email, or both).
This release contains three new features along with a few bugfixes. The first feature is field name aliasing to get rid of having the end user seeing result pages that had field names like email_address_of_your_dog. The second new feature is hidden fields. The hidden fields allow you to hide the user input from the results page (good for passwords). The third and final new feature for this release has to do with the $referers array, which now accepts regular expressions with the domain names.
Fixes in this release include a possible exploit with the e-mail address regular expression, issues with line breaks in some mail clients, and error reporting in send_mail().
This version includes better error reporting, fixes for show_blank_fields, and it no longer passes the form results to "thank you" pages (unless specified to).