Logout URL format when encrypted id_token_hint is received at IS

[sachiniWettasinghe]

Description:
When an application sends an encrypted id_token_hint (encrypted from the WSO2 IS public certificate) in the logout flow, it should send tenant domain also as a query param. So the logout URL should be in the following format.

The URL will look like below:
https://localhost:9443/oidc/logout?id_token_hint=<id_token>&post_logout_redirect_uri=<redirect URI>&state=<state>&tenant_domain=<tenant domain>

Example:

https://localhost:9443/oidc/logout?id_token_hint=eyJraWQiOiJNRFF5WkRJek16Sm1Nek14TnpNMllUZ3hPRGRoTTJRMFltWmpNRE13WW1SaU5tUmxPV1l5Wm1SaVpEZ3pOakpoT1dKbU1EYzNZV1prTVRoaFlqQmhPQSIsImVuYyI6IkExMjhHQ00iLCJhbGciOiJSU0EtT0FFUCJ9.kxT9GUakUUOrdj_-kDdeyv6Jo6C-3viW8YUDfhYAfSBUIm4sgwhljCMnFy_cuKSnTPVzcMdVyMbAE2_lz0QC2SwzT8r3quMWNPn8nYicZQYwgzKcS8DbsQFJPRaqVp8J7RYcyaSVuJc4KVWHoI4TF4kdMqbheVss1VlMrblfJgXyG04FfDU9LoOtrCzQCCROHMdkW9K3OhM85FNRuXsZA5zI5VKMsPBjtc2TheO735ZvnS57sa8ESVolA912hH66JFIhjiS7rISM7s2qOH2vHWhigC38PqXO9TYWHogUAFWqMgfkoUZw-87YDZ3Dsjysvfc2Bz8iqrtZ1pD5QC4Tng.nFwZYYHXERiuyga1.rwyHF2pPuEK5qPXNfSYBFRtxwDKVz8JJPK7ETktL2VteAg45ZU8CFIvV336yH_QqPUJSTKzWe9MvUXfXTkmmZ9sza40u0JtXycyx1dIR-unBueOMynBhpujfy3jSk4Hoa4pAcDCtSLmIFho8xk-UOQgN2-0qGSk8-FSxkQQkWFf4FjVlLNIoxoj78a3GlqZwqEMvz8_O8hZnMNebnL8U93KxnyK2d8Ozs8W9MlYMZxhYFLdKbEF4mAe0UNLMHNKNUh2NBlsNa6Vss4XnoETWirMWAsJRdPby4ZZyOSOG7ydFhDeAmvh2sdH5cWdArY-OQs_5rJdnbzJO7Z6G7_iDD-Pi4aBSH0w_fcit7PVj2d3lM5hs2rfLHst_ehR7hFuSQfbPB7aaK7nBpvNpzFC7T-5bVY23IjQ6uG_oXn04-aTf-v2zjdHTSFI.n9I4jNI9g3if8HSyLLabWA&post_logout_redirect_uri=http://localhost:8080/pickup-manager/oauth2client&state=state_1&tenant_domain
=abc.com

The docs in [1], [2] should be updated with the above details.

Affected Product Version:
From IS 5.10.0 to above versions.

Related Issues:
wso2/product-is#8676

[1] https://is.docs.wso2.com/en/latest/learn/testing-oidc-encrypted-id-token-with-is/
[2] https://is.docs.wso2.com/en/latest/learn/openid-connect-logout-url-redirection/