I've had this issue for quite some time and surprised no one else has noticed this bug.
After about a day of running SEP, when I look in Regedit under HKEY_USERS I'll see everyone's hive who has previously logged into the Windows Server 2016/XenApp 1808 VM's. If these users attempted to return to the affected VM, they would be denied logging in until their hive was dismounted. The bug is able to suvive a reboot.
This issue seems to manifest when the Symantec registry key LaunchSMCGui is set to zero.
I used to temporarily mitigate the problem by running SMC -Stop and SMC -Start but this no longer works in 14.2 MP1. SEP 14.2 would cause my XenApp VM's to BSOD a lot.