This update for sdbootutil fixes the following issues

Security issue:

- CVE-2026-25701: use of fixed directory /tmp/pcrlock.d.back in sdbootutil-update-predictions.service (bsc#1258241).

Non security issues:

Update to version 1+git20260506.25d47bf:
- TPM based system does not auto-unlock encryption (bsc#1257612).
- openQA test fails in reboot_after_installation - sdbootutil does not honor timeout set by user
  (bsc#1258944).
- Installation with Systemd-boot fails when Turkish language is selected (bsc#1253652).
- armv7 installer requires sdbootutil and shim on armv7 (bsc#1254865).
- sdbootutil default entry not updated after update from 20250411 to 20250522 (bsc#1243889).
- sdbootutil: consistent naming conventions used for key/pin ? (bsc#1252871).
- UPDATE_NVRAM is NO when BLS bootloader is used (bsc#1247952).
- Use tmpfiles.d for /var directories (jsc#PED-14900).
- yast reports "Cannot enroll authentication" during fresh install of tumbleweed (bsc#1256775).