Guess what, cross domain XHR calls are not in the shipping version and nobody seems to notice. Google for it and hardly a peep…I guess new features whether they ship or not are cool, but the hard reality of what makes it out not so much. Retractions just never really make the front page no matter what the medium.
p.s. Security consultants fret not. IE8 is still planning on XDRs (that is an XHR for making cross domain calls) so you’ll have plenty of work in ’09!