Bad advice in README.txt

Is this fixed, won't fix, by design? When going through CVS I see this added:

+Alternately you can add <img>, <div> and <span> to the default filter.

making the relevant text:

Only users who have the right to use Full HTML filter will be able to use
imagepicker. This is done because Imagepicker uses some HTML, which will be
stipped out if user will not use this filter. Users, who has the right to use
Full HTML filter will be able to use Imagepicker instantly after installation.
If you want to enable Imagepicker module for other users, you will have to
reconfigure filters.
[...]
Go to Administer > Site configuration > Input formats. You should see a list of
all available filter in your site. Choose Full HTML and click on the configure
link. In the Roles fieldset select all roles you want to be able to use this
filter and save configuration.
Alternately you can add <img>, <div> and <span> to the default filter.

IMO this isn't nearly strong enough as anyone with access to the Full HTML format can execute cross site scripting attacks (may lead to admin access).

Setting status.