Polish setAllowedHostnames

Added JavaDoc to method, including @SInCE attribute

Issue gh-4310

Author: jzheaux

web/src/main/java/org/springframework/security/web/firewall/StrictHttpFirewall.java

@@ -16,15 +16,15 @@
 
 package org.springframework.security.web.firewall;
 
-import javax.servlet.http.HttpServletRequest;
-import javax.servlet.http.HttpServletResponse;
 import java.util.Arrays;
 import java.util.Collection;
 import java.util.Collections;
 import java.util.HashSet;
 import java.util.List;
 import java.util.Set;
 import java.util.function.Predicate;
+import javax.servlet.http.HttpServletRequest;
+import javax.servlet.http.HttpServletResponse;
 
 /**
  * <p>
@@ -238,6 +238,14 @@ public void setAllowUrlEncodedPercent(boolean allowUrlEncodedPercent) {
 		}
 	}
 
+	/**
+	 * <p>
+	 * Determines which hostnames should be allowed. The default is to allow any hostname.
+	 * </p>
+	 *
+	 * @param allowedHostnames the predicate for testing hostnames
+	 * @since 5.0.17
+	 */
 	public void setAllowedHostnames(Predicate<String> allowedHostnames) {
 		if (allowedHostnames == null) {
 			throw new IllegalArgumentException("allowedHostnames cannot be null");