Kibana audit logging attribute filtering

[arisonl]

We currently allow to configure the new Kibana audit logging and include/exclude events as needed. It would be good to extend this functionality and allow filtering in/out of logs attributes.

(Linking to the main audit logging meta issue: https://github.com/elastic/kibana/issues/52125)

[elasticmachine]

Pinging @elastic/kibana-security (Team:Security)

[ppf2]

Providing a way to filter by user name would be nice so users can filter out the entries logged by "internal" processes like kibana-metricbeat.