Dynamic SQL Can Be Good

Right or wrong, I've always believed dynamic SQL was a bad idea, both because the SQL can't be saved to the execution plan cache, but more importantly, it opens the door to SQL injection attacks.  While those concerns are valid, Jonathon Roberts posts an article demonstrating the good (and in this case, arguably necessary) use of dynamic SQL.