...
We discovered a fairly serious bug warranting an IdP V5 patch release, so that was completed. It was not a security issue, but deployments that do not use the shipping defaults for managing client sessions via HTML Storage would have been prone to more frequent re-authentication due to cookie issues, which some had been reporting anecdotally. A decent backlog of other small issues had been accumulating as well.
...