Ingest structured Elasticsearch audit log using Filebeat

[ycombinator]

Starting with elastic/elasticsearch#31931, Elasticsearch is able to emit structured audit logs. The current elasticsearch/audit fileset in Filebeat knows how to ingest the semi-structured audit logs. We need to add support for the structured audit logs as well.

[ycombinator]

/cc @albertzaharovits @ruflin

[ycombinator]

Also /cc @elastic/es-security for broad visibility

[botelastic]

This issue has been automatically marked as stale because it has not had recent activity. It will be closed if no further activity occurs. Thank you for your contributions.

[botelastic]

This issue doesn't have a Team:<team> label.