Add privileged session config option to kratos config UI

salt/kratos/defaults.yaml

@@ -5,8 +5,6 @@ kratos:
       whoami:
         required_aal: highest_available
     selfservice:
-      settings:
-        privileged_session_max_age: 5m
       methods:
         password:
           enabled: true
@@ -18,6 +16,7 @@ kratos:
             issuer: Security Onion
       flows:
         settings:
+          privileged_session_max_age: 5m
           ui_url: https://URL_BASE/?r=/settings
           required_aal: highest_available
         verification:

salt/kratos/soc_kratos.yaml

@@ -12,11 +12,6 @@ kratos:
           advanced: True
           helpLink: kratos.html
     selfservice:
-      settings:
-        privileged_session_max_age:
-          description: The length of time after a successful authentication for a user's session to be elevated to a privileged session. Privileged sessions are able to change passwords and MFA settings for that user. If a session is no longer privileged then the user is sent to the login form first, before the security settings can be adjusted.
-          global: True
-          helpLink: kratos.html
       methods:
         password:
           enabled: 
@@ -43,6 +38,10 @@ kratos:
               helpLink: kratos.html
       flows:
         settings:
+          privileged_session_max_age:
+            description: The length of time after a successful authentication for a user's session to be elevated to a privileged session. Privileged sessions are able to change passwords and MFA settings for that user. If a session is no longer privileged then the user is sent to the login form first, before the security settings can be adjusted.
+            global: True
+            helpLink: kratos.html
           ui_url: 
             description: User accessible URL containing the user self-service profile and security settings. Leave as default to ensure proper operation.
             global: True