Password policy now correctly validates any extended ASCII characters that are entered for the "must not contain words" condition. This condition also now differentiates between a complete word match and a string attribute match when displaying a Policy Violation message. (ID-19384)