Below settings need to be done in azure APP.
Reply URLs:
Multi-tenant:
If multitenant is not enabled in Azure application and login showing tenant error then please enable this checkbox (Authorization Endpoint Type) on setting page.
Required Permissions:
To Sync Profile image, please map o365_azure_profile_image_url with Azure Photo field
