Major changes
- Enhance authorization server discovery with support for OpenID Connect Discovery 1.0. (PR #797)
- Allow servers to expose icons as additional metadata for tools, resources and prompts (SEP-973).
Minor changes
- Clarify that servers must respond with HTTP 403 Forbidden for invalid Origin headers in Streamable HTTP transport. (PR #1439)