Fix strict OpenIdConnect server response validation

[hschink]

What this PR does / why we need it:

This PR introduces a new parameter for the OpenIdConnect health check which allows to control the validation of the OpenId Provider response.

Specifically, with this PR users can enable/disable the validation of the response_types_supported parameter for Dynamic OpenID Providers. The specification states:

REQUIRED. JSON array containing a list of the OAuth 2.0 response_type values that this OP supports. Dynamic OpenID Providers MUST support the code, id_token, and the id_token token Response Type values.

Which issue(s) this PR fixes:

2152

Special notes for your reviewer:

On my local machine test be_healthy_if_idsvr_is_available fails. I assume this is related to my local setup.

Does this PR introduce a user-facing change?:

Yes, by default the Dynamic OpenID Providers-specific validation is disabled. Current users of the validation need to activate the check explicitly.

Please make sure you've completed the relevant tasks for this PR, out of the following list:

• [X] Code compiles correctly
• [X] Created/updated tests
• [X] Unit tests passing
• [ ] End-to-end tests passing
• [X] Extended the documentation
• [ ] Provided sample for the feature

[hschink]

@dotnet-policy-service agree company="Trapeze"