Exception:

Response signature invalid (Service: AWSSecurityTokenV20111201; Status Code: 400; Error Code: InvalidIdentityToken; Request ID; Proxy: null). Please try again.

Resolution:

This issue occurs when the Idp Certificate used in the Connected App is using the Expired Certiticate. Create a new certificate and update the Connected App with the new certificate to resolve the issue.