fix: ID token mapper for opensearch integration

[shreddedbacon]

General Checklist

• [ ] Affected Issues have been mentioned in the Closing issues section
• [ ] Documentation has been written/updated
• [ ] PR title is ready for inclusion in changelog

Database Migrations

• [ ] If your PR contains a database migation, it MUST be the latest in date order alphabetically

Fixes the token mapper for the opensearch integration to correctly add the mapping to the ID token

Verification can be performed by requesting a scope=openid token like so after setting Direct access grants on the lagoon-opendistro-security client settings. The resuting id_token should contain the groups within it.

curl -s -d "scope=openid" -d 'client_id=lagoon-opendistro-security' -d 'client_secret=$CLIENT_SECRET' -d 'username=${USERNAME}' -d 'password=${PASSWORD}' -d 'grant_type=password'     'http://localhost:8088/auth/realms/lagoon/protocol/openid-connect/token' | jq -r '.id_token'