[8.16](backport #41381) Fix system module with both filesets enabled

[mergify]

Proposed commit message

The system module did not define an ID at the root of the config, that made the V2 input loader only start the first journald input it saw because they both ended up with the same identifier (type, ID and path). This is fixed by defining an ID at the root of the configuration templates.

The journald input now also adds the input_id key to its loggers and a non-fatal error is now logged at debug level.

The system-logs input is now marked as experimental instead of stable.

Fix lint warnings by moving toJournalConfig to input_linux.go

Move TestSystemLogsCanUseLogInput to a file without the
linux build constraint so it can run on all OSes supported by the
system integration.

Checklist

• My code follows the style guidelines of this project
• I have commented my code, particularly in hard-to-understand areas
• [ ] I have made corresponding changes to the documentation
• [ ] I have made corresponding change to the default configuration files
• I have added tests that prove my fix is effective or that my feature works
• [ ] I have added an entry in CHANGELOG.next.asciidoc or CHANGELOG-developer.next.asciidoc.

## Disruptive User Impact
## Author's Checklist

How to test this PR locally

1. Run Filebeat with the following filebeat.yml and modules.d/system.yml (adjust credentials/addresses as necessary)

   filebeat.yml

   filebeat.inputs:
     - type: journald
       id: my-journald-normal-input
       tags:
          - journald-input
     - type: filestream
       id: my-filestream-id
       paths:
         - /tmp/flog.log
   
   filebeat.config.modules:
     path: ${path.config}/modules.d/*.yml
     reload.enabled: false
     reload.period: 1s
   
   setup.template:
     settings:
       index.number_of_shards: 1
   
   setup.kibana:
     host: "http://kibana:5601"
     username: admin
     password: testing
     ssl.verification_mode: none
   
   output.elasticsearch:
     hosts: ["http://elasticsearch:9200"]
     preset: latency
     protocol: "http"
   
     username: admin
     password: testing
     ssl.verification_mode: none

   modules.d/system.yml

   - module: system
     syslog:
       enabled: true
       var.use_journald: true
       input:
         tags:
           - from-journald
   
     auth:
       enabled: true
       var.use_journald: true
       var.tags:
         - from-journald

2. Go to Discover in Kibana, filter by tags: from-journald

3. Look at fileset.name from the events, make sure auth and syslog are there

Related issues

• Closes [System module] Only one instance of Journald runs when both syslog and auth filesets are enabled #41378

## Use cases
## Screenshots
## Logs

---

This is an automatic backport of pull request #41381 done by Mergify.

[mergify]

Cherry-pick of b1c7478 has failed:

On branch mergify/bp/8.16/pr-41381
Your branch is up to date with 'origin/8.16'.

You are currently cherry-picking commit b1c7478458.
  (fix conflicts and run "git cherry-pick --continue")
  (use "git cherry-pick --skip" to skip this patch)
  (use "git cherry-pick --abort" to cancel the cherry-pick operation)

Changes to be committed:
	modified:   filebeat/input/journald/config.go
	modified:   filebeat/input/journald/input.go
	modified:   filebeat/input/journald/pkg/journalctl/jctlmock_test.go
	modified:   filebeat/input/journald/pkg/journalctl/journalctl.go
	modified:   filebeat/input/journald/pkg/journalctl/mode.go
	modified:   filebeat/input/journald/pkg/journalctl/mode_test.go
	modified:   filebeat/input/journald/pkg/journalctl/reader.go
	modified:   filebeat/input/journald/pkg/journalctl/reader_test.go
	modified:   filebeat/input/journald/pkg/journalfield/conv.go
	deleted:    filebeat/input/journald/pkg/journalfield/default_other.go
	modified:   filebeat/input/journald/pkg/journalfield/matcher.go
	modified:   filebeat/input/systemlogs/input.go
	modified:   filebeat/input/systemlogs/input_linux.go
	modified:   filebeat/module/system/auth/config/auth.yml
	modified:   filebeat/module/system/syslog/config/syslog.yml
	new file:   filebeat/tests/integration/systemlogs_all_test.go
	renamed:    filebeat/tests/integration/systemlogs_test.go -> filebeat/tests/integration/systemlogs_linux_test.go
	new file:   filebeat/tests/integration/systemlogs_other_test.go
	modified:   filebeat/tests/integration/testdata/filebeat_system_module.yml
	modified:   libbeat/tests/integration/framework.go

Unmerged paths:
  (use "git add <file>..." to mark resolution)
	both modified:   .buildkite/filebeat/filebeat-pipeline.yml

To fix up this pull request, you can check it out locally. See documentation: https://docs.github.com/en/pull-requests/collaborating-with-pull-requests/reviewing-changes-in-pull-requests/checking-out-pull-requests-locally

[belimawr]

Because we decided to revert the changes in the system module (see #41489), this PR should not be merged yet.

Alongside with the fixes in the system module, the original PR also brought some improvements in the journald input that would be nice to have in 8.16. So let's wait for #41489 to be merged, rebase onto 8.16 then merge this PR, this will avoid conflicts with #41489 that is more important.

[mergify]

This pull request is now in conflicts. Could you fix it? 🙏
To fixup this pull request, you can check out it locally. See documentation: https://help.github.com/articles/checking-out-pull-requests-locally/

git fetch upstream
git checkout -b mergify/bp/8.16/pr-41381 upstream/mergify/bp/8.16/pr-41381
git merge upstream/8.16
git push upstream mergify/bp/8.16/pr-41381

[elasticmachine]

Pinging @elastic/elastic-agent-data-plane (Team:Elastic-Agent-Data-Plane)