Secure SAML validation to prevent XML signature wrapping attacks.