Okta SSO attribute statements config no longer accurate

[r0mant]

It looks like Okta rolled out an update to its SAML app configuration that no longer allows to configure attribute statements and group attribute statements during SAML app creation. They are now considered "legacy configuration" and replaced by "expressions":

This makes this step of the docs guide inaccurate: https://goteleport.com/docs/identity-governance/integrations/okta/guided-sso/#step-35-configure-the-app. Basically, it looks like it doesn't allow you to configure attribute statements during SAML app creation anymore. Instead, you configure these expressions once the app has been created on the Sign On screen. For the time being, the old method of configuration is still available under "legacy" section but I imagine it may get removed in future.

We should update it to make sure the docs are up-to-date with the current version of Okta SAML app creation UX.