Minor Description
Chris suggested that the logout link should be enabled by default. The reason it isn't currently is that you cannot logout of BASIC authentication and some Single sign on systems.
I will enable it and allow sites to configure cookies which will be deleted. The logout messages should encourage users to close all browser windows to ensure logout