Freeform plaintext (not an executable/script) being an attack vector is new, outside of parser vulns. Providing context through tickets, docs, etc is now a non-obvious security liability.