+2  A: 

Did you remember to encode any & characters as &?

Matti Virkkunen
ofcourse not. :) Thanks.
cyberpine
+1  A: 

XML attribute values must be XML-escaped. All instances of & in a URL for example must be written as &.

The same is true for HTML, by the way, only that browsers (i.e. HTML parsers) are more forgiving than XML parsers.

Tomalak
@Tom: More forg_iv_ing? (unlike SO users) :-)
LarsH