Hi Mario,
The best approach will be to raise a ticket with Microsoft and escalate internally via the Account Manager for quick response it seems it is widespread by reading at the comments from tech forum.
Other step you can try is to remove the user to a OU that is not sync, run a delta sync, object will be deleted in Azure AD, allow to sync back to AAD via in scope OU and test again the login process, as the SSO process is broken it will require detailed logs from the device. IMHO worth trying for the affected user.
==
Please "Accept the answer" if the information helped you. This will help us and others in the community as well.