This is a patch release that fixes a thread-safety bug in DPoP proof validation.
What's Changed
Bug Fix: Fixed a race condition in DPoPProofValidator.ValidateToken() where the shared TokenValidationParameters singleton had its IssuerSigningKey overwritten by concurrent requests using different DPoP keys, causing intermittent IDX10503 signature validation failures (~5-10% failure rate under load with multiple DPoP keys).
The fix clones TokenValidationParameters before mutation so each request operates on its own copy.