A flaw was found in Keycloak 7.0.1. A logged in user can do an account email enumeration attack. References: https://issues.jboss.org/browse/KEYCLOAK-12014
Marking RHSSO 7 as affected.
External References: https://issues.redhat.com/browse/KEYCLOAK-12014