We are a Windows shop. We want to try Shavlik only for Servers (2003 & 2008), and desktops. When doing a scan, there are so many patches found missing. In looking at them, how do i know which one to approve to deploy to a targeted server machine group? We are concern about only security patches. Should I approve patches only listed as critical or important? Is there a guideline I can go by to pick out from?