fix[react]: store secureRouterReferrerPath in sessionStorage

[shuowu]

PR Checklist

Please check if your PR fulfills the following requirements:

• The commit message follows our guidelines
• Tests for the changes have been added (for bug fixes / features)
• Docs have been added / updated (for bug fixes / features)

PR Type

What kind of change does this PR introduce?

• Bugfix
• Feature
• Code style update (formatting, local variables)
• Refactoring (no functional changes, no api changes)
• Adding Tests
• Build related changes
• CI related changes
• Documentation changes
• Other... Please describe:

What is the current behavior?

Issue Number: OKTA-282373

What is the new behavior?

Store secureRouterReferrerPath in sessionStorage

Does this PR introduce a breaking change?

• Yes
• No

Other information

Reviewers

[swiftone]

This looks like the kind of issue that blew us up when we had conflicting versions of Auth JS between the SIW and outside the SIW.

@aarongranick-okta - as I recall, the solution was to first check for the localStorage version, then fall back to the sessionStorage, but that won't work for this scenario (which is specifically multiple tabs), right? Am I overthinking this?

[shuowu]

Not sure, but I saw okta-angular is implemented with sessionStorage.

[aarongranick-okta]

@swiftone I don't think this will affect the widget. Unlike the PKCE meta which is stored by auth flow initializer (SIW) and read by callback handler (SDK). This value is stored by the SDK before the redirect to SIW, and read by the SDK after the callback has been handled.