[HIGH] CVE-2020-15094: Prevent RCE when calling untrusted remote with CachingHttpClient

PKSA-8knv-7jsn-12w8 CVE-2020-15094 GHSA-754h-5r27-7x3r

Affected package: symfony/http-kernel

Affected version: >=4.3.0,<4.4.0|>=4.4.0,<4.4.13|>=5.0.0,<5.1.0|>=5.1.0,<5.1.5

Reported by:
GitHub, FriendsOfPHP/security-advisories