diff --git a/components/phpunit_bridge.rst b/components/phpunit_bridge.rst
index 04380cfa076..785084f49b5 100644
--- a/components/phpunit_bridge.rst
+++ b/components/phpunit_bridge.rst
@@ -757,7 +757,7 @@ Troubleshooting
 The ``@group time-sensitive`` and ``@group dns-sensitive`` annotations work
 "by convention" and assume that the namespace of the tested class can be
 obtained just by removing the ``Tests\`` part from the test namespace. I.e.
-that if the your test case fully-qualified class name (FQCN) is
+if your test cases fully-qualified class name (FQCN) is
 ``App\Tests\Watch\DummyWatchTest``, it assumes the tested class namespace
 is ``App\Watch``.
 
diff --git a/security/user_provider.rst b/security/user_provider.rst
index 45f4911f762..69ba8ec6275 100644
--- a/security/user_provider.rst
+++ b/security/user_provider.rst
@@ -215,6 +215,11 @@ It's not recommended to use this provider in real applications because of its
 limitations and how difficult it is to manage users. It may be useful in application
 prototypes and for limited applications that don't store users in databases.
 
+.. caution::
+
+    When using a ``memory`` provider, the :class:`Symfony\\Component\\Security\\Core\\User\\User`
+    and not the ``auto`` algorithm, you have to choose an encoding without salt (i.e. ``bcrypt``).
+
 This user provider stores all user information in a configuration file,
 including their passwords. That's why the first step is to configure how these
 users will encode their passwords: