The Shibboleth Project has released a security advisory that involves the XML processing performed by the Service Provider on a subset of platforms limited to an older version of the Xerces library. An xmltooling patch update, V1.6.3, is available that corrects the issue on platforms not already protected by an updated XML parser.