[TI_MISP] - Updated transform to sort by '@timestamp' to ensure the latest documents are selected for each unique key (#15816)

Existing sorting logic in the transform was by event.ingested field.
This however created issues with bulk ingestion where the order of ingestion 
is not gauaranteed by elasticsearch, which can sometimes lead to recent events 
being not updated in the destination index of the transform. Sorting by '@timestamp'
helps mitigate this issue.

Author: ShourieG

packages/ti_misp/changelog.yml

@@ -1,4 +1,9 @@
 # newer versions go on top
+- version: "1.38.1"
+  changes:
+    - description: Updated transform to sort by `@timestamp` to ensure the latest documents are selected for each unique key.
+      type: bugfix
+      link: https://github.com/elastic/integrations/pull/15816
 - version: "1.38.0"
   changes:
     - description: Update Kibana constraint to support 9.0.0.

packages/ti_misp/elasticsearch/transform/latest_ioc/transform.yml

@@ -18,7 +18,7 @@ latest:
     - event.dataset
     - misp.attribute.uuid
     - misp.attribute.Event.uuid
-  sort: "event.ingested"
+  sort: "@timestamp"
 description: Latest MISP IoC data
 frequency: 30s
 sync:
@@ -33,4 +33,4 @@ retention_policy:
 _meta:
   managed: true
   # Bump this version to delete, reinstall, and restart the transform during package.
-  fleet_transform_version: 0.3.0
+  fleet_transform_version: 0.4.0

packages/ti_misp/manifest.yml

@@ -1,6 +1,6 @@
 name: ti_misp
 title: MISP
-version: "1.38.0"
+version: "1.38.1"
 description: Ingest threat intelligence indicators from MISP platform with Elastic Agent.
 type: integration
 format_version: "3.0.2"