I did a Guerilla Training session at Security BSides Austin on Cross-Site Scripting (XSS) Remediation. The slides from the session are online here:
Also I have some sample exercises for remediating cross-site scripting (XSS) vulnerabilities in Java and ASP.NET. Email me if you would like me to send them along.
dan _at_ denimgroup.com