[MEDIUM] Exposure of .env if project root is configured as web root in shopware/production

PKSA-62rz-jzfj-ym5j GHSA-3pcr-4982-548m

Affected package: shopware/shopware

Affected version: <=6.3.5.2

Reported by:
GitHub