If the user is part of an organization and this link led to a security incident, the report should include steps taken, impact, lessons learned, etc. But again, without the actual content, it's hard to be specific.