New audit event: Password changes for namespace-specific users

Additional context in parent epic.

Audit need

Understanding when passwords are changed helps to ensure users are complying with company policy and also can be used to identify unusual activity.

Proposal

Create a new audit event when a password is changed for a user.

This should only be surfaced for users that have been provisioned as enterprise users in the relevant top-level group.

• For users that are not part of that enterprise, do not surface the events.

Streaming audit event considerations

Only send as a streaming audit event, due to data volume potentially.