Currently, keycloak saml SP, keystore information is read from keycloak_saml.xml file. but keystore and private key password is written in plain text which may lead to security vulnerability.