Fix isk claim removal from refreshed id token when the user attributes are updated

[lashinijay]

Proposed changes in this pull request

• $subject

Related Issue

• ISK claim is removed from id token (refreshed) if the user attributes are updated wso2/product-is#21105

When should this PR be merged

[Please describe any preconditions that need to be addressed before we
can merge this pull request.]

Follow up actions

[List any possible follow-up actions here; for instance, testing data
migrations, software that we need to install on staging and production
environments.]

Checklist (for reviewing)

General

• Is this PR explained thoroughly? All code changes must be accounted for in the PR description.
• Is the PR labeled correctly?

Functionality

• Are all requirements met? Compare implemented functionality with the requirements specification.
• Does the UI work as expected? There should be no Javascript errors in the console; all resources should load. There should be no unexpected errors. Deliberately try to break the feature to find out if there are corner cases that are not handled.

Code

• Do you fully understand the introduced changes to the code? If not ask for clarification, it might uncover ways to solve a problem in a more elegant and efficient way.
• Does the PR introduce any inefficient database requests? Use the debug server to check for duplicate requests.
• Are all necessary strings marked for translation? All strings that are exposed to users via the UI must be marked for translation.

Tests

• Are there sufficient test cases? Ensure that all components are tested individually; models, forms, and serializers should be tested in isolation even if a test for a view covers these components.
• If this is a bug fix, are tests for the issue in place? There must be a test case for the bug to ensure the issue won’t regress. Make sure that the tests break without the new code to fix the issue.
• If this is a new feature or a significant change to an existing feature? has the manual testing spreadsheet been updated with instructions for manual testing?

Security

• Confirm this PR doesn't commit any keys, passwords, tokens, usernames, or other secrets.
• Are all UI and API inputs run through forms or serializers?
• Are all external inputs validated and sanitized appropriately?
• Does all branching logic have a default case?
• Does this solution handle outliers and edge cases gracefully?
• Are all external communications secured and restricted to SSL?

Documentation

• Are changes to the UI documented in the platform docs? If this PR introduces new platform site functionality or changes existing ones, the changes should be documented.
• Are changes to the API documented in the API docs? If this PR introduces new API functionality or changes existing ones, the changes must be documented.
• Are reusable components documented? If this PR introduces components that are relevant to other developers (for instance a mixin for a view or a generic form) they should be documented in the Wiki.

[jenkins-is-staging]

PR builder started
Link: https://github.com/wso2/product-is/actions/runs/11659405811

[jenkins-is-staging]

PR builder completed
Link: https://github.com/wso2/product-is/actions/runs/11659405811
Status: failure

[jenkins-is-staging]

PR builder started
Link: https://github.com/wso2/product-is/actions/runs/11659482747

[codecov]

Codecov Report

Attention: Patch coverage is 52.94118% with 16 lines in your changes missing coverage. Please review.

Project coverage is 55.10%. Comparing base (7acf35a) to head (bd44465).
Report is 22 commits behind head on master.

Files with missing lines	Patch %	Lines
...uth2/token/handlers/grant/RefreshGrantHandler.java	41.17%	7 Missing and 3 partials ⚠️
...carbon/identity/oauth2/dao/AccessTokenDAOImpl.java	78.57%	3 Missing ⚠️
.../identity/openidconnect/DefaultIDTokenBuilder.java	0.00%	1 Missing and 1 partial ⚠️
...so2/carbon/identity/oauth2/dao/AccessTokenDAO.java	0.00%	1 Missing ⚠️

Additional details and impacted files

@@             Coverage Diff              @@
##             master    #2617      +/-   ##
============================================
+ Coverage     54.95%   55.10%   +0.15%     
- Complexity     8259     8286      +27     
============================================
  Files           632      632              
  Lines         47577    48256     +679     
  Branches       7567     7828     +261     
============================================
+ Hits          26144    26590     +446     
- Misses        17606    17798     +192     
- Partials       3827     3868      +41     

Flag	Coverage Δ
unit	38.70% <52.94%> (+0.93%)	⬆️

Flags with carried forward coverage won't be shown. Click here to find out more.

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

[jenkins-is-staging]

PR builder completed
Link: https://github.com/wso2/product-is/actions/runs/11659482747
Status: success

[jenkins-is-staging]

Approving the pull request based on the successful pr build https://github.com/wso2/product-is/actions/runs/11659482747