Add support for multiple OpenID providers with role policies (#14223)

- When using multiple providers, claim-based providers are not allowed. All
providers must use role policies.

- Update markdown config to allow `details` HTML element

docs/site-replication/gen-oidc-sts-cred.go

@@ -58,6 +58,7 @@ func main() {
 		log.Fatalf("Failed to generate OIDC token: %v", err)
 	}
 
+	roleARN := os.Getenv("ROLE_ARN")
 	webID := cr.STSWebIdentity{
 		Client:      &http.Client{},
 		STSEndpoint: endpoint,
@@ -66,6 +67,7 @@ func main() {
 				Token: oidcToken,
 			}, nil
 		},
+		RoleARN: roleARN,
 	}
 
 	value, err := webID.Retrieve()