The idea here is to provide some basic security features that one would desire on all pages and make them automatic. This includes such things as helping to ensure data integrity and program flow.
One big concern with going through HTML is handling proper escaping
and unescaping so that the user sees the proper value and the program
sees the proper data. That is, if the user puts in <, we want the
user and data to (usually) see < and not `.'