Spring Security Add hash-based Content-Security-Policy for SAML post pages

Inline scripts of SAML pages for post binding does not work if CSP is active.

Therefore the page should include a hash of the inline script in the meta section.

This ticket is base of the comment of https://github.com/spring-projects/spring-security/issues/9529#issuecomment-1178881838