WordPress 3.0.2 is released and has a mandatory security fix that is essential for multi author blogs who have writers with “author” accounts.
Per WordPress.org blog:
This maintenance release fixes a moderate security issue that could allow a malicious Author-level user to gain further access to the site, addresses a handful of bugs, and provides some additional security enhancements. Big thanks to Vladimir Kolesnikov for detailed and responsible disclosure of the security issue!
Updating your WordPress Blog
I do recommend using Auto Update, but highly recommend you backup your database first, this is done with the WP-DBManager to ensure you can recover in case a rare SQL Database corruption occurs. It takes only 2 minutes of time but is worth it in case something goes wrong with the upgrade.
I upgraded my own blogs with the auto upgrade feature and it took less than 60 seconds per blog and no issues found after upgrading 7 WordPress blogs.