There is a known SAML vulnerability which can impact some SAML implementations.
Multiple SAML libraries may incorrectly utilize the results of XML DOM traversal and canonicalization APIs in such a way that an attacker may be able to manipulate the SAML data without invalidating the cryptographic signature, allowing the attacker to potentially bypass authentication to SAML service providers. For more information about SAML Vulnerability, please refer to this article from CERT.
Catchpoint, as a service provider, is NOT IMPACTED by this vulnerability as we do not rely on the affected XML parsers; the parser we use does not have the problem described here.