v0.4.2

This release fixes a Cross-Site Request Forgery issue that is present in trestle-auth versions 0.4.0 and 0.4.1.
See GHSA-h8hx-2c5r-32cf for more information.

• Ensure CSRF protection is prepended before authentication before_actions (addresses CVE-2021-29435)
• Fix install generator on older Ruby versions (< 2.6) [#31]