cve-2021-21424 Prevent user enumeration for Symfony 3.4

security #cve-2021-21424 Prevent user enumeration (jrushlow) - implemented for a version compatible with Symfony 3.4