Add role, team, and org attributes to SSO attributes table (#18295)

* add attributes to table

* add optional tag

layouts/shortcodes/admin-sso.md

@@ -1,11 +1,14 @@
 {{ $product_name := "Docker Hub" }}
 {{ $sso_config_link := "[configuring SSO](/single-sign-on/configure/)" }}
+{{ $role_mapping_link := "[Set up role mapping](docker-hub/scim.md#set-up-role-mapping)" }}
 
 {{ if eq (.Get "product") "admin" }}
 {{ $product_name = "Docker Admin" }}
 {{ $sso_config_link = "[configuring SSO](/admin/organization/security-settings/sso-configuration/)" }}
+{{ $role_mapping_link = "[Set up role mapping](admin/organization/security-settings/scim.md#set-up-role-mapping)" }}
 {{ if eq (.Get "layer") "company" }}
 {{ $sso_config_link = "[configuring SSO](/admin/company/settings/sso-configuration/)" }}
+{{ $role_mapping_link = "[Set up role mapping](admin/company/settings/scim.md#set-up-role-mapping)" }}
 {{ end }}
 {{ end }}
 
@@ -37,13 +40,18 @@ When a user signs in using SSO, Docker obtains the following attributes from the
 - **Full name** - name of the user
 - **Groups (optional)** - list of groups to which the user belongs
 
-If you use SAML for your SSO connection, Docker obtains these attributes from the SAML assertion message. Your IdP may use different naming for SAML attributes than those listed above. The following table lists the possible SAML attributes that can be present in order for your SSO connection to work.
+If you use SAML for your SSO connection, Docker obtains these attributes from the SAML assertion message. Your IdP may use different naming for SAML attributes than those listed above. The following table lists the possible SAML attributes that can be present in order for your SSO connection to work. 
+
+You can also configure attributes to override default values, such as default team or organization. See {{ $role_mapping_link }}.
 
 | SSO attribute | SAML assertion message attributes |
 | ---------------- | ------------------------- |
 | Email address    | `"http://schemas.xmlsoap.org/ws/2005/05/identity/claims/nameidentifier"`, `"http://schemas.xmlsoap.org/ws/2005/05/identity/claims/upn"`, `"http://schemas.xmlsoap.org/ws/2005/05/identity/claims/emailaddress"`, `email`                           |
 | Full name        | `"http://schemas.xmlsoap.org/ws/2005/05/identity/claims/name"`, `name`, `"http://schemas.xmlsoap.org/ws/2005/05/identity/claims/givenname"`, `"http://schemas.xmlsoap.org/ws/2005/05/identity/claims/surname"`  |
 | Groups (optional) | `"http://schemas.xmlsoap.org/claims/Group"`, `"http://schemas.microsoft.com/ws/2008/06/identity/claims/groups"`, `Groups`, `groups` |
+| Docker Org (optional)        | `dockerOrg`   |
+| Docker Team (optional)     | `dockerTeam`  |
+| Docker Role (optional)      | `dockerRole`  |
 
 > **Important**
 >