Update dependency Microsoft.Identity.Client to 4.72.0

[renovate]

This PR contains the following updates:

Package	Change	Age	Adoption	Passing	Confidence
Microsoft.Identity.Client (source)	4.66.2 -> 4.72.0

---

Release Notes

AzureAD/microsoft-authentication-library-for-dotnet (Microsoft.Identity.Client)

v4.72.0

Compare Source

=======

Features

• Added MacOs Broker support. See Issue #​5051

Bug Fixes

• Ensure additional cache parameters are persisted in cache serializationIssue #​5261

v4.71.1

Compare Source

=======

Bug Fixes

• Pass the validate function to the http manager. See Issue #​5242
• Change the resource id param for IMDS. See Issue #​5238

v4.71.0

Compare Source

=======

Bug Fixes

• Enable the Service Fabric flow to get a httpClient from the factory with ssl validation callback. See Issue #​5220

v4.70.2

Compare Source

=======

Bug fixes

• Fixed MSIv1 Token Revocation's token_sha256_to_refresh parameter to use SHA256's HEX representation. See Issue #​5228

v4.70.1

Compare Source

=======

Bug fixes

• Fixed Machine Learning Source to Use "clientid" instead of "client_id". See Issue #​5193
• Fixed IsCommonOrOrganizationsTenant check to not return true for consumers. See Issue #​5195
• Fixed logger message to accurately reflect skipCache condition. See Issue #​5201
• Removed experimental feature Flag from WithFmiPath API. See Issue #​5206
• Added an option to disable ESTS-R (1P only). See Issue #​5224

v4.70.0

Compare Source

==========

Features

• Added a .WithAccessTokenSha256ToRefresh() method to AcquireTokenForClientParameterBuilder for ConfidentialClientApplication, allowing finer control over token refresh scenarios. Issue #​5111, PR #​5179
• Added TokenCacheNotificationArgs.NoDistributedCacheUseReason in order to indicate that the configured serialized cache should not be a distributed cache to prevent issues when acquiring tokens. Issue #​5199

Bug Fixes

• Removed invalid tenant checks (/organizations or /common) in MTLS flows for AAD/dSTS authorities. Issue #​5093
• Fixed an issue where specifying a null service config region in MTLS scenarios did not correctly throw an exception. Issue #​5181

v4.69.1

Compare Source

==========

Features

• Enabled broker support on the Linux platform. See Issue #​5086
• Added a WithCertificate(..., bool associateTokensWithCertificateSerialNumber) overload to enable the use of the certificate's serial number as part of the cache key for tokens. Issue #​5150

Bug Fixes

• MSAL will now stop replacing "%20" with "+" since it is obsolete. See Issue #​5061
• Exposed client capabilities in AssertionRequestOptions for MSI FIC scenarios Issue #​4948
• Added the missing claims in SignedAssertion when using the AssertionRequestOptions Delegate Issue #​5143

v4.68.0

Compare Source

==========

Features

• Added WithFmiPath() api to support FMI scenarios in MSAL. See Issue #​5110
• MSAL will now pass Client sku and Version to MsalRuntime for MSAL Runtime's client telemetry. See Issue #​5103

Bug Fixes

• Reordered the condition for ManagedIdentitySource.MachineLearning to be checked after ManagedIdentitySource.AppService instead of before it. See Issue #​5077
• Improved Managed Identity Source Detection Logging for Debugging. See Issue #​5097
• When a 404 error occurs, MSAL will now include the endpoint and authority URLs in the exception message for better debugging. See Issue #​4769
• MSAL will now set UseShellExecute to false in OpenLinuxBrowser. See Issue #​5075
• Fixed a threading exception when using ExtraQueryParameters. See Issue #​5108

v4.67.2

Compare Source

==========

Bug Fixes

• Fixed an issue with Managed Identity source detection where Azure ML was prioritized incorrectly over Azure App Service, causing token acquisition failures. See Bug #​5077

v4.67.1

Compare Source

==========

Bug Fixes

• Added support for Azure Machine Learning (Azure ML) Managed Identity (MSI) to address missing functionality for token acquisition in Azure Machine Learning environments. See Bug #​4984

v4.67.0

Compare Source

==========

New Features

• MSAL.NET now supports acquiring token for Client Credentials flow with a Subject Name Issuer (SNI) certificate over Mutual TLS (mTLS) for first-party applications. See Issue #​4986
• Bumped NET SDK from net6 to net8, aligning MSAL.NET with the latest .NET standards and features. See Feature Request #​5025
• Public API analyzer integrated to enhance API compliance and stability. See Feature Request #​4931

Bug Fixes

• Improved AcquireTokenSilent logging and handling of Family of Client IDs (FOCI). See Bug #​4988
• Fixed issues where DurationTotalInMs in AuthenticationResultMetadata differed from Stopwatch measurements. See Bug #​4895
• Resolved incorrect computation of OTel durations in L1 cache and during the creation of POP tokens. See Bug #​5036
• Addressed an issue where AbstractAcquireTokenParameterBuilder<T>.WithAdfsAuthority threw exceptions when the tenant ID was null and the authority host URI ended in /adfs. See Bug #​4860
• Fixed a parsing issue in Managed Identity to align with Azure.Identity's behavior for handling invalid JSON responses. See Bug #​5016

Deprecated

• Removed MSAL v3 migration aids. See Remove #​4987

---

Configuration

📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

♻ Rebasing: Whenever PR is behind base branch, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about this update again.

---

• If you want to rebase/retry this PR, check this box

---

This PR was generated by Mend Renovate. View the repository job log.