feat: log claims

[hperl]

Sometimes there are issues with mapping the claims from a SSO provider to an identity trait. This change adds the claims that we get back to the event, so that we can better debug these issues.

Related issue(s)

Checklist

• I have read the contributing guidelines.
• I have referenced an issue containing the design document if my change
  introduces a new feature.
• I am following the
  contributing code guidelines.
• I have read the security policy.
• I confirm that this pull request does not address a security
  vulnerability. If this pull request addresses a security vulnerability, I
  confirm that I got the approval (please contact
  security@ory.sh) from the maintainers to push
  the changes.
• I have added tests that prove my fix is effective or that my feature
  works.
• I have added or changed the documentation.

Further Comments

[zepatrik]

Only setting the keys should not leak any PII.

[aeneasr]

CI fails

[codecov]

Codecov Report

Attention: Patch coverage is 83.33333% with 1 lines in your changes are missing coverage. Please review.

Project coverage is 78.14%. Comparing base (7017490) to head (a8e3475).
Report is 1 commits behind head on master.

Files	Patch %	Lines
selfservice/strategy/oidc/strategy.go	83.33%	0 Missing and 1 partial ⚠️

Additional details and impacted files

@@           Coverage Diff           @@
##           master    #3798   +/-   ##
=======================================
  Coverage   78.14%   78.14%           
=======================================
  Files         349      349           
  Lines       24118    24121    +3     
=======================================
+ Hits        18846    18849    +3     
  Misses       3852     3852           
  Partials     1420     1420           

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

[aeneasr]

Wouldn't this leak PII into the tracing system?

[hperl]

No, this is just the keys, meaning the claim keys. The PII is just in the values, which we don't send.