Issue #3261663 by s.messaris, DieterHolvoet, ShaunDychko, smustgrave,...

Issue #3261663 by s.messaris, DieterHolvoet, ShaunDychko, smustgrave, schillerm, dww: Password reset json endpoint reveals whether an email or username is in use

(cherry picked from commit 98618df7)