session: Remove session ID-format related INIs from session/security.xml (#3994)

These are deprecated with PHP 8.4, because the defaults are fine.

Author: TimWolla

reference/session/security.xml

@@ -721,29 +721,6 @@
      </para>
     </listitem>
 
-    <listitem>
-     <para>
-      <link linkend="ini.session.sid-length">session.sid_length</link>="48"
-     </para>
-     <para>
-      (PHP 7.1.0 &gt;=) Longer session IDs results in stronger session IDs.
-      Developers should consider a session ID length of 32 characters or more.
-      At least 26 characters are required when
-      <link linkend="ini.session.sid-bits-per-character">session.sid_bits_per_character</link>="5".
-     </para>
-    </listitem>
-
-    <listitem>
-     <para>
-      <link linkend="ini.session.sid-bits-per-character">session.sid_bits_per_character</link>="6"
-     </para>
-     <para>
-      (PHP 7.1.0 &gt;=) The more bits there are in a session ID character,
-      the stronger the session ID generated by the session module is for an
-      identical session ID length.
-     </para>
-    </listitem>
-
     <listitem>
      <para>
       <link linkend="ini.session.hash-function">session.hash_function</link>="sha256"