Updates to jwt permissions; typo fixes Clarified that some View access is needed to the issue class. At minimum depending on how the update is done the etag of the issue is required. Also noted that returned json does include new value of the field. So this could leak info.