fix(users): Add Bad request response in openidconnect

[racnan]

Currently, when users provide an invalid or expired code during SSO login, the system returns a 500 response. This is misleading, as the issue is with the client input rather than a server error. This change introduces a proper 400 BadRequest response to better reflect the actual problem and improve error handling.

[Jatan196]

Hello there, pl assigm me it! Like to work on it!