diff --git a/requirements-testing.txt b/requirements-testing.txt
index c1145c77a..547e862c4 100644
--- a/requirements-testing.txt
+++ b/requirements-testing.txt
@@ -5,7 +5,12 @@ cryptography <= 36.0.0
 eventlet <= 0.33.2
 fedmsg <= 1.1.2
 flake8 <= 4.0.1
+
+# Important: Until https://github.com/puiterwijk/flask-oidc/pull/144 is merged and a new version of flask-oidc is released,
+# it's necessary to ensure `itsdangerous` is pinned to a version lower as 2.1 as well.
 flask-oidc <= 1.4.0
+itsdangerous < 2.1          
+
 mock <= 4.0.3
 pagure-messages >= 0.0.1
 pytest <= 6.2.5
diff --git a/requirements.txt b/requirements.txt
index 690ef681c..38b6351cd 100644
--- a/requirements.txt
+++ b/requirements.txt
@@ -38,7 +38,10 @@ whitenoise <= 6.2.0
 wtforms <= 3.0.1
 
 # Required only for the `oidc` authentication backend
+# Important: Until https://github.com/puiterwijk/flask-oidc/pull/144 is merged and a new version of flask-oidc is released, 
+# it's necessary to ensure `itsdangerous` is pinned to a version lower as 2.1 as well.
 # flask-oidc <= 1.4.0
+# itsdangerous < 2.1
 
 # Required only if `USE_FLASK_SESSION_EXT` is set to `True`
 # flask-session