This is not a bad thing. It is very insecure for email software to open included or embedded links automatically just because that is what the sender wants.

Even if it is not spam.targeting local code to automatically run on a receivers machine is a very bad idea. That is how phishing attacks spread viruses. People should think beyond their immediate needs. This is why IT managers have to think for them.