Update versioning for secure OIDC in reusable workflows (#39793)

Co-authored-by: Joe Clark <31087804+jc-clark@users.noreply.github.com>

data/features/restricted-permissions-oidc.yml

@@ -0,0 +1,6 @@
+# Issue 10918
+# Stricter permissions for securely enabling OpenID Connect (OIDC) in a reusable workflows
+versions:
+  fpt: '*'
+  ghec: '*'
+  ghes: '>=3.10'

data/reusables/actions/oidc-permissions-token.md

@@ -20,6 +20,7 @@ permissions:
   id-token: write # This is required for requesting the JWT
 ```
 
+{% ifversion restricted-permissions-oidc %}
 You may need to specify additional permissions here, depending on your workflow's requirements.
 
 For reusable workflows that are owned by the same user, organization, or enterprise as the caller workflow, the OIDC token generated in the reusable workflow can be accessed from the caller's context. 
@@ -27,3 +28,4 @@ For reusable workflows outside your enterprise or organization, the `permissions
 This ensures that the OIDC token generated in the reusable workflow is only allowed to be consumed in the caller workflows when intended.
 
 For more information, see "[AUTOTITLE](/actions/using-workflows/reusing-workflows)."
+{% endif %}