Update README with CVE-2025-66475 reference

pitbulk · web-flow · commit ab5a76fba28a · 2025-12-09T12:14:42.000+01:00
diff --git a/README.md b/README.md
@@ -8,6 +8,8 @@ Add SAML support to your PHP 5.X or 7.X software using this library.
 Warning
 -------
 
+Version 3.8.1 updates xmlseclibs to 3.1.4 due [CVE-2025-66475](https://github.com/advisories/GHSA-c4cc-x928-vjw9)
+
 Version 3.4.0 introduces the 'rejectUnsolicitedResponsesWithInResponseTo' setting parameter, by default disabled, that will allow invalidate unsolicited SAMLResponse. This version as well will reject SAMLResponse if requestId was provided to the validator but the SAMLResponse does not contain a InResponseTo attribute. And an additional setting parameter 'destinationStrictlyMatches', by default disabled, that will force that the Destination URL should strictly match to the address that process the SAMLResponse.
 
 Version 3.3.1 updates xmlseclibs to 3.0.4 (CVE-2019-3465), but php-saml was not directly affected since it implements additional checks that prevent to exploit that vulnerability.
