Track event when job token is authorized for a project with disabled scope

What does this MR do and why?

Addresses item 8 from #478522 (closed):

8. Unique number of projects receiving authentications while having disabled scope and distinguish between same-project vs cross-project authentications - helps distinguish how many projects use CI_JOB_TOKEN but there is no need to populate the allowlist (same project) vs the cross-project where we need to populate the allowlist. The first numbers will also help calculate the number of projects not impacted at all (inactive or without inbound CI_JOB_TOKEN)

Also updated the module Gitlab::InternalEventsTracking to make track_internal_event usable inside class methods.

app/models/ci/job_token/authorization.rb

@@ -9,6 +9,8 @@
 module Ci
   module JobToken
     class Authorization < Ci::ApplicationRecord
+      extend Gitlab::InternalEventsTracking
+
       self.table_name = 'ci_job_token_authorizations'
 
       belongs_to :origin_project, class_name: 'Project' # where the job token came from
@@ -22,9 +24,27 @@ class Authorization < Ci::ApplicationRecord
 
       # Record in SafeRequestStore a cross-project access attempt
       def self.capture(origin_project:, accessed_project:)
-        # Skip self-referential accesses as they are always allowed and don't need
-        # to be logged neither added to the allowlist.
-        return if origin_project == accessed_project
+        if origin_project == accessed_project
+          track_internal_event(
+            'authorize_job_token_with_disabled_scope',
+            project: accessed_project,
+            additional_properties: {
+              label: 'same-project'
+            }
+          )
+
+          # Skip self-referential accesses as they are always allowed and don't need
+          # to be logged neither added to the allowlist.
+          return
+        else
+          track_internal_event(
+            'authorize_job_token_with_disabled_scope',
+            project: accessed_project,
+            additional_properties: {
+              label: 'cross-project'
+            }
+          )
+        end
 
         # We are tracking an attempt of cross-project utilization but we
         # are not yet persisting this log until a request successfully