** Bug
* [UTL-209] – Login timeout page throws 500 error for SAML POST endpoints
* [UTL-269] – Enable hard-token authentication via Duo using SAML
* [UTL-279] – OpenAM patches are not applied in a predictable order
** Task
* [UTL-272] – Make enhancements to the two-factor authentication user interface and workflow
* [UTL-280] – Add UT branding to error page when multiple Duo push notifications are requested simultaneously