As part of the JWT/OIDC authentication for vault allow us to enhance the claims to include the environment id. This is required since we would like to make the scope more granular in order to allow production secrets to only be available to production environments.

Additionally prod1 env should not have access to prod2 secrets as part of the pipeline.

Include a claim in the JWT payload for the current environment id
account/{account_id}:org/{organization_id}:project/{project_id}/{env_id}

Similar to feature flag PL_OIDC_ENHANCED_SUBJECT_FIELD but with extra field.