[org.keycloak:keycloak-parent] Keycloak SAML javascript protocol mapper: Uploading of scripts through admin console

An issue was discovered in Keycloak allows arbitrary Javascript to be uploaded for the SAML protocol mapper even if the UPLOAD_SCRIPTS feature is disabled

References

• https://github.com/keycloak/keycloak/security/advisories/GHSA-wf7g-7h6h-678v
• https://nvd.nist.gov/vuln/detail/CVE-2022-2668
• https://github.com/keycloak/keycloak/commit/e2ae7eef39b27e48ffa4764995d558555f02838c
• https://access.redhat.com/security/cve/CVE-2022-2668
• https://bugzilla.redhat.com/show_bug.cgi?id=2115392
• https://github.com/advisories/GHSA-wf7g-7h6h-678v