…ment branch instead of master for new features. (oleg-andreyev)This PR was merged into the 3.4 branch.Discussion----------Adding "special case" when need to select development branch instead of master for new features.As per discussion insymfony#11457 andsymfony/symfony#31177 (comment) updated section on how to select branchCommits-------1c2bae2 added "special case"

…ged (oleg-andreyev)This PR was merged into the 4.4 branch.Discussion----------#21571 Comparing roles to detected that users has changed| Q             | A| ------------- | ---| Branch?       | 4.4| Bug fix?      | yes| New feature?  | yes| BC breaks?    | no| Deprecations? | no| Tests pass?   | yes| License       | MIT| Fixed tickets |#21571 (comment)| Docs |symfony/symfony-docs#11457**Case 1:**User A has roles `foo, bar and admin`, User A is signed-in into application and token is persisted, later another User B with role `admin`, decided to restrict role `admin` for User A, so User A won't lose it's privileges until session is expired or logout, because token is persisted with `roles` and `authenticated=true` and roles are not compared.Ref. to the previous attempt:#27121Commits-------4f4c30d - updated AbstractToken to compare Roles - Updated isEqualTo method to match roles as default User implements EquatableInterface - added test case - bumped symfony/security-core to 4.4

…s" section (oleg-andreyev)This PR was merged into the 4.4 branch.Discussion----------#21571 updated "Authentication Success and Failure Events" sectionUpdated "Authentication Success and Failure Events"`security.authentication.success` can be dispatched in the following cases:- if `always_authenticate_before_granting` is enabled and `isGranted` is called- if a token is not authenticated before `AccessListener` is invoked- if customer submitted credentials (actual authentication)symfony/symfony#21571Commits-------dc91bfd#21571 updated "Authentication Success and Failure Events" section