sn is a user attribute defined in RFC4519→ (Lightweight Directory Access Protocol (LDAP):Schema for User Applications). From RFC4519: "The sn (surname in X.500) attribute type contains name strings for the family names of a person."
sn is commonly used to transmit a person's last (family) name. Some IdPs may send multiple permutations of the person's name in the givenName attribute.