Update notes on CVE-2019-3815/systemd

The CVE is affecting specifically our backport of the CVE-2018-16864 fix
for stretch which was based on both upstream's and Red Hat's backport
work for v219.

Details in the regression fix at
https://lists.debian.org/debian-security-announce/2019/msg00008.html .