26.5.0

✨ New Features

• Introduction of Workflows (preview) to automate administrative tasks and processes within a realm.
• JWT Authorization Grants (preview) supporting RFC 7523 for requesting OAuth 2.0 access tokens using external signed JWT assertions.
• OpenTelemetry support for metrics and logging.
• Support for authenticating clients with Kubernetes service account tokens to avoid static client secrets (Federated client authentication preview enhancement).
• CORS enhancements allowing specification of allowed headers via the SPI option <code>spi-cors--default--allowed-headers</code> for overall configuration.
• CORS enhancements allowing specification of allowed headers via client registration access policies for OpenID Connect Dynamic Client Registration.
• Logout confirmation page option in client logout configuration, showing a "You are logged out" page upon successful logout.
• Ability to hide OpenID Connect scopes from the discovery endpoint by disabling "Include in OpenID Provider Metadata".
• Organization invitation management via Admin Console and REST API (view, resend, delete invitations).
• New persistent storage for organization invitations in the database.
• New event <code>USER_SESSION_DELETED</code> fired for each expired user session.