Bump symfony/framework-bundle from 4.2.0 to 4.2.7

[dependabot]

Bumps symfony/framework-bundle from 4.2.0 to 4.2.7.

Changelog

Sourced from symfony/framework-bundle's changelog.

CHANGELOG

5.0.0

• Removed support to load translation resources from the legacy directories src/Resources/translations/ and src/Resources/<BundleName>/translations/
• Removed ControllerNameParser.
• Removed ResolveControllerNameSubscriber
• Removed support for bundle:controller:action to reference controllers. Use serviceOrFqcn::method instead
• Removed support for PHP templating, use Twig instead
• Removed Controller, use AbstractController instead
• Removed Client, use KernelBrowser instead
• Removed ContainerAwareCommand, use dependency injection instead
• Removed the validation.strict_email option, use validation.email_validation_mode instead
• Removed the cache.app.simple service and its corresponding PSR-16 autowiring alias
• Removed cache-related compiler passes and RequestDataCollector
• Removed the translator.selector and session.save_listener services
• Removed SecurityUserValueResolver, use UserValueResolver instead
• Removed routing.loader.service.
• Service route loaders must be tagged with routing.route_loader.
• Added slugger service and SluggerInterface alias
• Removed the lock.store.flock, lock.store.semaphore, lock.store.memcached.abstract and lock.store.redis.abstract services.

4.4.0

• Added lint:container command to check that services wiring matches type declarations
• Added MailerAssertionsTrait
• Deprecated support for templating engine in TemplateController, use Twig instead
• Deprecated the $parser argument of ControllerResolver::__construct() and DelegatingLoader::__construct()
• Deprecated the controller_name_converter and resolve_controller_name_subscriber services
• The ControllerResolver and DelegatingLoader classes have been marked as final
• Added support for configuring chained cache pools
• Deprecated calling WebTestCase::createClient() while a kernel has been booted, ensure the kernel is shut down before calling the method
• Deprecated routing.loader.service, use routing.loader.container instead.
• Not tagging service route loaders with routing.route_loader has been deprecated.
• Overriding the methods KernelTestCase::tearDown() and WebTestCase::tearDown() without the void return-type is deprecated.
• Added new error_controller configuration to handle system exceptions
• Added sort option for translation:update command.
• [BC Break] The framework.messenger.routing.senders config key is not deep merged anymore.
• Added secrets:* commands and %env(secret:...)% processor to deal with secrets seamlessly.
• Made framework.session.handler_id accept a DSN
• Marked the RouterDataCollector class as @final.

4.3.0

• Deprecated the framework.templating option, configure the Twig bundle instead.
• Added WebTestAssertionsTrait (included by default in WebTestCase)

... (truncated)

Commits

• 98e2030 bug #31108 [FrameworkBundle] decorate the ValidatorBuilder's translator with ...
• 5dbb0d1 Merge branch '3.4' into 4.2
• 172b76d Merge remote-tracking branch 'origin/3.4' into 3.4
• 8f22d8f [FrameworkBundle] minor: remove a typo from changelog
• 7dde7ef Merge branch '3.4' into 4.2
• c48b42d security #cve-2019-10909 [FrameworkBundle][Form] Fix XSS issues in the form t...
• 51d96f5 Merge branch '3.4' into 4.2
• c31a91b security #cve-2019-10912 [Cache][PHPUnit Bridge] Prevent destructors with sid...
• d21899f [FrameworkBundle] decorate the ValidatorBuilder's translator with LegacyTrans...
• 517e41b [FrameworkBundle] Fix Controller deprecated when using composer --optimized
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot ignore this [patch|minor|major] version will close this PR and stop Dependabot creating any more for this minor/major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
• @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
• @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
• @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
• @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

You can disable automated security fix PRs for this repo from the Security Alerts page.