diff --git a/packages/connectors/connector-saml/package.json b/packages/connectors/connector-saml/package.json
index 76dbad1e1..25c184c96 100644
--- a/packages/connectors/connector-saml/package.json
+++ b/packages/connectors/connector-saml/package.json
@@ -6,7 +6,7 @@
   "dependencies": {
     "@logto/connector-kit": "workspace:^3.0.0",
     "fast-xml-parser": "^4.2.5",
-    "samlify": "2.8.10"
+    "samlify": "2.8.11"
   },
   "main": "./lib/index.js",
   "module": "./lib/index.js",
diff --git a/packages/core/package.json b/packages/core/package.json
index a0e232564..093c6e1d0 100644
--- a/packages/core/package.json
+++ b/packages/core/package.json
@@ -83,7 +83,7 @@
     "qrcode": "^1.5.3",
     "redis": "^4.6.5",
     "roarr": "^7.11.0",
-    "samlify": "2.8.10",
+    "samlify": "2.8.11",
     "semver": "^7.3.8",
     "@silverhand/slonik": "31.0.0-beta.2",
     "snake-case": "^4.0.0",
diff --git a/pnpm-lock.yaml b/pnpm-lock.yaml
index f4adaebfe..db05d4b5a 100644
--- a/pnpm-lock.yaml
+++ b/pnpm-lock.yaml
@@ -2049,8 +2049,8 @@ importers:
         specifier: ^14.0.0
         version: 14.0.0
       samlify:
-        specifier: 2.8.10
-        version: 2.8.10
+        specifier: 2.8.11
+        version: 2.8.11
       snakecase-keys:
         specifier: ^8.0.0
         version: 8.0.0
@@ -3010,7 +3010,7 @@ importers:
     dependencies:
       '@authenio/samlify-node-xmllint':
         specifier: ^2.0.0
-        version: 2.0.0(samlify@2.8.10)
+        version: 2.0.0(samlify@2.8.11)
       '@aws-sdk/client-s3':
         specifier: ^3.315.0
         version: 3.315.0
@@ -3186,8 +3186,8 @@ importers:
         specifier: ^7.11.0
         version: 7.11.0
       samlify:
-        specifier: 2.8.10
-        version: 2.8.10
+        specifier: 2.8.11
+        version: 2.8.11
       semver:
         specifier: ^7.3.8
         version: 7.5.2
@@ -4090,13 +4090,13 @@ packages:
       openapi-types: 12.1.3
     dev: true
 
-  /@authenio/samlify-node-xmllint@2.0.0(samlify@2.8.10):
+  /@authenio/samlify-node-xmllint@2.0.0(samlify@2.8.11):
     resolution: {integrity: sha512-V9cQ0CHqu3JwOmbSecGPUnzIES5kHxD00FEZKnWh90ksQUJG5/TscV2r9XLbKp7MlRMOSUfWxecM35xPSLFdSg==}
     peerDependencies:
       samlify: '>= 2.6.0'
     dependencies:
       node-xmllint: 1.0.0
-      samlify: 2.8.10
+      samlify: 2.8.11
     dev: false
 
   /@authenio/xml-encryption@2.0.2:
@@ -19690,8 +19690,8 @@ packages:
   /safer-buffer@2.1.2:
     resolution: {integrity: sha512-YZo3K82SD7Riyi0E1EQPojLz7kpepnSQI9IyPbHHg1XXXevb5dJI7tpyN2ADxGcQbHG7vcyRHk0cbwqcQriUtg==}
 
-  /samlify@2.8.10:
-    resolution: {integrity: sha512-g2M1Qq2uL7GHtmBRaTVYcJD0Vb+XOyvXHsPARHCoqQ54Vp7m5h3NMUGzvLEIFGujxaamyM3BhEi9fdVAkJMvHw==}
+  /samlify@2.8.11:
+    resolution: {integrity: sha512-EDO9CMba0rtHSek2NyUcS8brIxK1E521X5fT+1qLKTRkm1dddITeuPqU8/by4Lcf95ngMKjsn5Z600eVhXDqxQ==}
     dependencies:
       '@authenio/xml-encryption': 2.0.2
       '@xmldom/xmldom': 0.8.7
@@ -19702,6 +19702,7 @@ packages:
       uuid: 8.3.2
       xml: 1.0.1
       xml-crypto: 3.0.1
+      xml-escape: 1.1.0
       xpath: 0.0.32
     dev: false
 
@@ -21763,6 +21764,10 @@ packages:
       xpath: 0.0.32
     dev: false
 
+  /xml-escape@1.1.0:
+    resolution: {integrity: sha512-B/T4sDK8Z6aUh/qNr7mjKAwwncIljFuUP+DO/D5hloYFj+90O88z8Wf7oSucZTHxBAsC1/CTP4rtx/x1Uf72Mg==}
+    dev: false
+
   /xml-name-validator@4.0.0:
     resolution: {integrity: sha512-ICP2e+jsHvAj2E2lIHxa5tjXRlKDJo4IdvPvCXbXQGdzSfmSpNVyIKMvoZHjDY9DP0zV17iI85o90vRFXNccRw==}
     engines: {node: '>=12'}