Password reset confirm message should discourage social engineering

Closed in favour of Email enumeration vulnerability on "Password Reset" dialogue