v1.0.0-rc-3

Update Nimbus OIDC SDK to fix CVE-2024-57699

Full Changelog: v1.0.0-rc-2...v1.0.0-rc-3

v1.0.0-rc-2

• Dependency-injection friendly: all dependencies can be directly injected into servlets and filters, rather than retrieved from the servlet context attributes
• Refactor UserPrincipal factory: moved out of Configuration to a servlet context attribute, and add a hook to allow loading additional user data at authentication time
• Refactor backchannel logout (to handle several app sessions linked to the same OpenID Provider session), and add a hook to allow immediately invalidating sessions using server-specific APIs
• Session data is serializable

Full Changelog: v1.0.0-rc-1...v1.0.0-rc-2