Update the vulnerability ingestion process to fill in data moved from the occurrences table

In #555979 (closed) we added non-ref contextual columns to the vulnerabilities table that previously existed on the vulnerability_occurrences table. Having done this, we now need to ensure that these attributes are being appropriately filled in by the vulnerability ingestion process so that we can remove these attributes from the vulnerability_occurrences table entirely at a later stage.