We just released diaspora* version 0.7.4.1 which fixes a possible cross-site scripting issue with maliciously crafted OpenGraph metadata.

Updating

Please update as soon as possible. Update instructions are available as usual in the wiki.