⭐ New Features
- Clarify in Javadoc that .csrf() enables CSRF protection #9489
- Throw Saml2AuthenticationException in Saml2AuthenticationTokenConverter on deflation or decoding error #9468
- Allow ACL to be owned by GrantedAuthoritySid #9454
- Add setMetadataFilename method to Saml2MetadataFilter #9393
- Improve HttpSessionSecurityContextRepository performance #9387
- Kotlin DSL extension for HttpSecurity#rememberMe #9319
- Add BearerTokenAuthenticationConverter #8975
🪲 Bug Fixes
🔨 Dependency Upgrades
❤️ Contributors
We'd like to thank all the contributors who worked on this release!