We are created a claim in the Azure interface for SAML and by default the email address is included in the template when we first create it. Everything was working fine, however a rookie was messing around and deleted the emailaddress claim and we can't seem to add it back. It's now missing from the claim payload where previously it was coming in with the label "emailAddress" - noting that the case is slightly different).
This claim type is restricted error
Can anyone explain what might be something obvious I'm missing here?