Do you only run htmlspecialchars() on output or is there other functionality you also do?

Question

When outputting user input, do you only use htmlspecialchars() or are there are functions/actions/methods you also run? I\'m looking for something that will als

Answer 1

I usually use

htmlspecialchars($var, ENT_QUOTES) 

on input fields. I created a method that does this because i use that a lot and it makes the code shorter and more readable.