[reciever/windowseventlog] Parse missing `Version` and `Correlation` fields from windows event log xml

[franciscovalentecastro]

Component(s)

receiver/windowseventlog

Is your feature request related to a problem? Please describe.

There are additional fields on the windows event XML schema that are useful to users, but we don't collect into the structured output of the receiver. It would be good to capture some of these fields.

Describe the solution you'd like

Add the following fields to the parsed output of the windows event log receiver:

• Version (see: SystemPropertiesType Schema)
• Correlation (see: SystemPropertiesType Schema)
  • This may contain the fields ActivityID and RelatedActivityID which enables the consumer to correlate different events (like tracing).

Describe alternatives you've considered

Use OTTL functions like ParseSimplifiedXML to parse original XML. This is a good workaround, but having the fields directly in the receiver struct is a simple update and avoids having to double parse the XML.

Additional context

Similar updates :

• [reciever/windowseventlog] Parse additional fields #27810
• [receiver/windowseventlog] Add Execution and Security information to parsed event log #27864

Tip

_{React with 👍 to help prioritize this issue. Please use comments to provide useful context, avoiding +1 or me too, to help us triage it. Learn more here.}

[github-actions]

Pinging code owners:

• receiver/windowseventlog: @armstrmi @pjanotti

See Adding Labels via Comments if you do not have permissions to add labels yourself.

[paulojmdias]

@franciscovalentecastro, assigning it to you as you already have a PR open for it 🙏

[franciscovalentecastro]

Fixed by #45019.