Best practices when it comes to SQL injections is the same whether or not you use UNIONs or not. Same goes for $_POST $_GET $_REQUEST or any other form of user provided data. Either use prepared statements (via PDO or MySQLi) or mysqli_real_escape_string() .
I cant really gove you an answer,but what I can give you is a way to a solution, that is you have to find the anglde that you relate to or peaks your interest. A good paper is one that people get drawn into because it reaches them ln some way.As for me WW11 to me, I think of the holocaust and the effect it had on the survivors, their families and those who stood by and did nothing until it was too late.