minor #17549 Add SensitiveParameter attribute in the security hardening list (fabpot)

This PR was merged into the 5.4 branch.

Discussion
----------

Add SensitiveParameter attribute in the security hardening list

<!--

If your pull request fixes a BUG, use the oldest maintained branch that contains
the bug (see https://symfony.com/releases for the list of maintained branches).

If your pull request documents a NEW FEATURE, use the same Symfony branch where
the feature was introduced (and `6.x` for features of unreleased versions).

-->

Commits
-------

4cfa2ce Add SensitiveParameter attribute in the security hardening list

Author: javiereguiluz

contributing/code/security.rst

@@ -22,8 +22,8 @@ email for confirmation):
   is set to ``true`` or ``APP_ENV`` set to anything but ``prod``);
 
 * Any fix that can be classified as **security hardening** like route
-  enumeration, login throttling bypasses, denial of service attacks, or timing
-  attacks.
+  enumeration, login throttling bypasses, denial of service attacks, timing
+  attacks, or lack of ``SensitiveParameter`` attributes.
 
 In any case, the core team has the final decision on which issues are
 considered security vulnerabilities.