[MEDIUM] SimpleSAMLphp SAML2 has an XXE in parsing SAML messages

PKSA-mvk4-j13p-n98v CVE-2024-52806 GHSA-pxm4-r5ph-q2m2

Affected package: simplesamlphp/saml2-legacy

Affected version: <4.6.14

Reported by:
GitHub