The knowledge base article on Cypher injection is up, please take a look:
Edited to use the public-facing article.