implement IKEv2's non-MOBIKE NAT port/address updates

[cagney]

The feature was never fully implemented. See #1492 Theory is to narrow it down to only allow port changes not address changes.

[cagney]

According to https://github.com/libreswan/libreswan/issues/1492#issuecomment-1864175953 port-only-updates don't work.

[cagney]

The feature was never fully implemented. See https://github.com/libreswan/libreswan/issues/1492

There's a rumour that the KLIPS module automatically updated the kernel side.

[cagney]

moving back to 5.2; 5.1 will have a flag to restore broken behaviour only