Fix CSRF token leakage in SAML POST binding template (#241)

Co-authored-by: zogoo <chtsogbadrakh@gmail.com>

Author: tyage

spec/rails_app/app/views/saml_idp/idp/saml_post.html.erb

@@ -5,10 +5,10 @@
     <meta http-equiv="X-UA-Compatible" content="IE=edge,chrome=1">
   </head>
   <body onload="document.forms[0].submit();" style="visibility:hidden;">
-    <%= form_tag(saml_acs_url) do %>
+    <form action="<%= saml_acs_url %>" method="post">
       <%= hidden_field_tag("SAMLResponse", @saml_response) %>
       <%= hidden_field_tag("RelayState", params[:RelayState]) %>
       <%= submit_tag "Submit" %>
-    <% end %>
+    </form>
   </body>
 </html>