Hooks should be passed the User instance

[tchaumeny]

Currently, the hooks CREATE_USER and BEFORE_LOGIN are passed the user_identity from SAML.

They should also be passed a the matching target_user — it is available at that point. That would help implement features like checking for specific flags on User to authorize SAML login or saving information related to user when created or logged in.