Package sssd-kcm: Information

- Update russian translations (by Elena Mishina <lepata@basealt.ru>)

- Update to 2.7 major release:
  + Added a new krb5 plugin idp and a new binary oidc_child which performs
    OAuth2 authentication against FreeIPA.
  + Better default for IPA/AD re_expression. Tunning for group names
    containing '@' is no longer needed.
  + Added support for anonymous PKINIT to get FAST credentials.
  + SSSD now correctly falls back to UPN search if the user was not found even
    with cache_first = true.
  + SSSD can now handle multi-valued RDNs if a unique name must be determined
    with the help of the RDN.
  + New option implicit_pac_responder to control if the PAC responder is started
    for the IPA and AD providers, default is true.
  + New option krb5_check_pac to control the PAC validation behavior.
  + Multiple crl_file arguments can be used in the certificate_verification
    option.

- AD Domain in the AD Forest Missing after sssd latest update
- sdap_idmap.c/sssd_idmap.c incorrectly calculates rangesize from upper/lower
- Regression on rawhide with ssh auth using password
- sssd-ad broken in 2.6.2, 389 used as kerberos port
- sssd error triggers backtrace: write_krb5info_file_from_fo_server