EZSA2008-002, the security patch to prevent editing pending items prior to approval actually removes or prevents an important piece of functionality, the ability to implement workflow-based data collection via eZWorkflowEventType::STATUS_FETCH_TEMPLATE_REPEAT.

Prior to security patching, it was possible to build an eventtype that implemented templates through STATUS_FETCH_TEMPLATE_REPEAT, and through the use of /content/edit and the PublishButton action you could accept further input from the user throughout that workflow process.

Changes to content/edit.php due to EZSA2008-002 have removed the possibility of editing such pending items which in turn removes the ability to implement such an eventtype.

Is there a possible workaround or improvement that could be made to content/edit to restore the option to accept and process such workflow based template inputs?

The offending changes was on or about line 480 in kernel/content/edit.php, the removal of

$version->attribute( 'status' ) != eZContentObjectVersion::STATUS_PENDING