WRITEUP

The patch addresses an authentication bypass vulnerability in WorkOS AuthKit for Next.js by ensuring the `x-workos-session` header is always controlled and deleted when no session exists. The fix prevents unauthorized access by enforcing proper header management during session validation.