[Security Solution] Add InvestigationFields and AlertSuppression fields to the upgrade workflow

[jpdjere]

Epics: https://github.com/elastic/security-team/issues/1974 (internal), https://github.com/elastic/kibana/issues/174168

Summary

Two fields have been left out of the Prebuilt Rules upgrade workflows and should be added:

• InvestigationFields
  • Field is common to all rule types
• AlertSuppression: is actually two different fields:
  • AlertSuppression for all rule types except Threshold
  • ThresholdAlertSuppression for Threshold rule types

To completely add these fields to the Upgrade Workflow the following sections in the codebase need to be edited:

/upgrade/_review endpoint

1. Add the fields in the Diffable Rule schemas.
2. Add the fields to the list of diff algorithms per rule type, choosing the correponding algorithm based on the type of the field.

/upgrade/_perform endpoint

3. Add the fields to the /upgrade/_perform endpoint request payload types

UI

4. Add the fields to the corresponding section lists for display in the UI

[elasticmachine]

Pinging @elastic/security-detections-response (Team:Detections and Resp)

[elasticmachine]

Pinging @elastic/security-solution (Team: SecuritySolution)

[elasticmachine]

Pinging @elastic/security-detection-rule-management (Team:Detection Rule Management)