Jenkins OpenId Connect Authentication Plugin 2.4 and earlier does not invalidate the previous session on login.