"OPs are encouraged to use short expiration times in Logout Tokens, preferably at most two minutes in the future, to prevent captured Logout Tokens from being replayable"
But in rfc8417, they state that it is not recommended to use an "exp" claim in SETs.
What is the recommendation for having an "exp" claim in the OIDC logout token ?