Dotan, check out
https://wiki.oasis-open.org/security/FrontPage for documentation on SAML 2.0.
Here is a brief summary of the items on the new SAML configuration page in Canvas.
IDP Entity ID: Globally unique identifier for your SAML 2.0 identity provider (IDP). (This is the service that is responsible for authenticating your users, e.g. Shibboleth.)
Log On URL: The location of the login page where your users authenticate with your identity provider.
Log Out URL: The location of the log out page where your users can terminate their session with your identity provider.
Change Password Link: The location of the reset password page for your users.
Certificate Fingerprint: An abbreviation of the certificate used by your IDP to sign its messages. (Fingerprints are typically encoded as hexadecimal strings, e.g. 43:51:43:a1:b5:fc:8b:b7:0a:3a:a9:b1:0f:66:73:a8.)
Login Attribute: This is the attribute that Canvas will look for in the SAML assertion to match an authenticated user from your IDP with a user in Canvas.
Identifier Format: If using NameID as the login attribute, this specifies the format of the identifier.
Authentication Context: How the user authenticated to your IDP. (This value is sent in the SAML assertion.)
Login Label: A label to help you associate a unique login identifier for your Canvas users with your IDP. (On the user's profile the value associated with this label would be the value sent by your IDP.)
Hope this helps.
Regards,