TL;DR:
1. Recover the LFSR state from public key and first four bits of the ciphertext
2. Decrypt the ciphertext with the LFSR state for the flag

Original writeup (https://b6a.black/posts/2021-11-04-hacklu-crypto/#lwsr-285-20-solves).