Cloud:
Automation agent can sometimes perform raw inserts and updates to admin.system.users. These are probably not being audited currently, and they will be after present change. It might be nice to get the agent to use createUser/updateUser to get clearer audit log entries, and allow server to evolve the document format without breaking Automation, or preventing automation from taking advantage of new functionality.
Docs:
this change introduces new type of audit: directAuthMutation . Please see following file for all payloads it could emit:
jstests/audit/crud-user-role-direct.js