In M-Files Server product with versions before 21.11.10775.0, enabling logging of Federated authentication to event log wrote sensitive information to log. Mitigating factors are logging is disabled by default.
https://www.m-files.com/about/trust-center/security-vulnerabilities/cve-2021-41808/
https://empower.m-files.com/security-advisories/CVE-2021-41808