Do you understand that the name
and client id
of your application are public to anyone trying to sign in?
For example, when your users are trying to sign in, the request will contain the ClientID of your application and the sign in page will contain the name of the application especially when there is need to consent to any permissions. Also, as the application developer, this error shows you the UPN of the identity being used to sign in to the application.
My suggestion is to limit who access to the sign in logs that are generated by your application as the tenant and user info returned in the error message help tell the user and the developer what went wrong with specifics.