A company has implemented SAML-based SSO with a third-party identity provider for its AWS accounts. Recently, the identity provider renewed its expired signing certificate, which has caused users to encounter a 'Response Signature Invalid' error when attempting to log in to AWS. This error is reported with the details: 'Service: AWSSecurityTokenService; Status Code: 400; Error Code: InvalidIdentityToken'. The security engineer is tasked with resolving this issue while ensuring minimal operational impact. Which of the following solutions should the engineer adopt to address this issue effectively? | AWS Certified Security - Specialty Quiz