There was a misunderstanding by the developer (myself) in 4.2.2 which removed the certificate/key requirement when logoutResponseSigned was checked, this has been fixed.
Note: there are a few known bugs using this module with the php-saml 3.0.0-namespaceless branch, I am currently working to resolve it and will have a fix out in the next few days.