sha2: bump to pre-release 0.11.0-pre.3

[ramosbugs]

is there a vulnerability or something that justifies bumping the dependency to a pre-release version?

[baloo]

No, sorry for the noise. This is mostly because I want to experiment with the new api provided by the upcoming versions of rustcrypto.

oauth2-rs and openidconnect are dependencies of my code, and I need all dependencies to align.