• #418 Improve SAML message signature validation using original encoded parameters instead decoded in order to avoid conflicts (URL-encoding is not canonical, reported issues with ADFS)
• #420 Expose NameID Format on SloLogoutrequest
• #423 Allow format_cert to work with chained certificates
• #422 Use to_s for requested attribute value