diff --git a/CHANGELOG.md b/CHANGELOG.md
index d0f5019..55e582f 100644
--- a/CHANGELOG.md
+++ b/CHANGELOG.md
@@ -1,3 +1,15 @@
+<a name="v2.2.0"></a>
+### v2.2.0 (2024-09-10)
+
+This release fixes:
+
+* [GHSA-jw9c-mfg7-9rx2](https://github.com/SAML-Toolkits/ruby-saml/security/advisories/GHSA-jw9c-mfg7-9rx2)
+* [GHSA-cvp8-5r8g-fhvq](https://github.com/omniauth/omniauth-saml/security/advisories/GHSA-cvp8-5r8g-fhvq)
+
+#### Chores
+
+* use semantic versioning for ruby-saml as per gem build hints ([e17f460](/../../commit/e17f460))
+
 <a name="v2.1.1"></a>
 ### v2.1.1 (2024-09-10)
 
diff --git a/lib/omniauth-saml/version.rb b/lib/omniauth-saml/version.rb
index 29338ed..47ef560 100644
--- a/lib/omniauth-saml/version.rb
+++ b/lib/omniauth-saml/version.rb
@@ -1,5 +1,5 @@
 module OmniAuth
   module SAML
-    VERSION = '2.1.1'
+    VERSION = '2.2.0'
   end
 end
diff --git a/omniauth-saml.gemspec b/omniauth-saml.gemspec
index 823333c..fce7eea 100644
--- a/omniauth-saml.gemspec
+++ b/omniauth-saml.gemspec
@@ -13,7 +13,7 @@ Gem::Specification.new do |gem|
   gem.required_ruby_version = '>= 3.1'
 
   gem.add_runtime_dependency 'omniauth', '~> 2.1'
-  gem.add_runtime_dependency 'ruby-saml', '>= 1.17'
+  gem.add_runtime_dependency 'ruby-saml', '~> 1.17'
 
   gem.add_development_dependency 'rake', '~> 13.2'
   gem.add_development_dependency 'rspec', '~> 3.13'