This needs to be clarified more.
It is backwards incompatible change that will break apps using request headers that contain underscores.
Warn about it and link to the workaround blog post https://blog.phusion.nl/2015/12/07/cve-2015-7519/