Hi - our pentesters found what they describe as an Open Relay in our SLO process, which is handled by omniauth-saml. On our application this can be reproduced like so: ``` https://[OUR_APPLICATION]/users/auth/saml/spslo?RelayState=//attacker_domain.com ``` A url like that will redirect to `attacher_domain.com` They describe the issue like this >An open redirect vulnerability occurs when a web application improperly handles user-supplied input, allowing attackers to manipulate redirection to an external, untrusted URL. This vulnerability typically arises when an application accepts a user-provided URL as a parameter without proper validation before redirecting the user to it.