Update the security policy to prevent some back and forth with the community

Signed-off-by: Bruno Oliveira da Silva <[email protected]>

Author: abstractj

pages/security.ftl

@@ -11,7 +11,7 @@
 
     <p>It is important that suspected vulnerabilities are disclosed in a responsible way, and are not publicly disclosed until after they have been analysed and a fix is available.</p>
 
-    <p>To report a security vulnerability, send an email to <a href="mailto:[email protected]">[email protected]</a>.</p>
+    <p>To report a security vulnerability, send an email to <a href="mailto:[email protected]">[email protected]</a>. Please include the version that is affected, provide detailed instructions on how to reproduce the issue, and include your contact information for acknowledgements.</p>
 
     <p>If you would like to work with us on a fix for the security vulnerability, please include your GitHub username in the above email, and we will provide you access to a temporary private fork where we can collaborate on a fix without it being disclosed publicly.</p>