Acidus has also posted the source code of the XSS Payload, and says he plans to post a more detailed analysis later.

http://fast.info/myspace/ -- Samy rambles, it's relative funny
http://namb.la/popular/tech.html -- Samy takes a shot at a techincal explanation -- not terribly in depth but a nice overview

RE: BetaNews | Cross-Site Scripting Worm Hits MySpace