• #296 Add rejectDeprecatedAlgorithm settings in order to be able reject messages signed with deprecated algorithms.
• Set sha256 and rsa-sha256 as default algorithms
• #288 Support building a LogoutResponse with non-success status
• Added warning about Open Redirect and Reply attacks
• ##274 Replace double-underscored names with single underscores
• Add at OneLogin_Saml2_Auth get_last_assertion_issue_instant() and get_last_response_in_response_to() methods
• Upgrade dependencies