[Security Solution] Prebuilt rules with missing base version are marked as customized on edit

[xcrzx]

Summary

Currently, any rule update, such as adding or editing rule actions, causes the rule to be marked as customized if its base version is missing. Due to the current package size limit, this is a relatively common situation and is already affecting 8.16 with the feature flag disabled.

Steps to Reproduce

1. Ensure the rule customization feature flag is disabled.
2. Open any prebuilt rule that doesn’t have a base version in the rules package.
3. Edit the rule (e.g., add or modify its actions).
4. Save the rule.

Expected Result

The rule is not marked as customized after saving, as actions do not count toward customizations.

Actual Result

The rule is erroneously marked as customized.

Mitigation

When the rule customizaiton feature flag is disabled, we should always return isCustomized: false regardless of changes introduced to a rule.

[elasticmachine]

Pinging @elastic/security-solution (Team: SecuritySolution)

[elasticmachine]

Pinging @elastic/security-detections-response (Team:Detections and Resp)

[elasticmachine]

Pinging @elastic/security-detection-rule-management (Team:Detection Rule Management)