A straightforward way of addressing the flaw before updates are installed is by enabling the ‘Validate Identity Provider Certificate’ option in the SAML Identity Provider Server Profile.