[LOW] XML decoding attack vector through external entities

PKSA-44g2-whft-1n99 GHSA-g2qj-pmxm-9f8f

Affected package: symfony/symfony

Affected version: >=2.0.0,<2.0.11

Reported by:
GitHub, FriendsOfPHP/security-advisories