I want to create a visualization with certian critieria, however some fields in my index are unknown. I have already tried to refresh the field list in management => index patterns, but it did not help. I have also read about that mapping needs to be enabled to make elasticsearch parse those fields, but I want to make sure that everything I do will not cause data loss. Here is the mapping settings for my index:

{
"alert-2023.06.04-000003" : {
"mappings" : {
"dynamic_templates" : [
{
"message_fields" : {
"path_match" : "message",
"match_mapping_type" : "string",
"mapping" : {
"norms" : false,
"type" : "text"
}
}
},
{
"string_fields" : {
"match" : "*",
"match_mapping_type" : "string",
"mapping" : {
"type" : "keyword"
}
}
}
],
"date_detection" : true,
"numeric_detection" : false,
"properties" : {
"@timestamp" : {
"type" : "date",
"format" : "date_optional_time"
},
"@version" : {
"type" : "keyword"
},
"aggregate_id" : {
"type" : "keyword"
},
"alert_id" : {
"type" : "keyword"
},
"alert_info" : {
"properties" : {
"command" : {
"type" : "keyword"
},
"hive_host" : {
"type" : "keyword"
},
"risk_value" : {
"type" : "keyword"
},
"type" : {
"type" : "keyword"
}
}
},
"alert_sent" : {
"type" : "boolean"
},
"alert_time" : {
"type" : "date",
"format" : "date_optional_time"
},
"data" : {
"type" : "object",
"enabled" : false
},
"geoip" : {
"dynamic" : "true",
"properties" : {
"ip" : {
"type" : "ip"
},
"latitude" : {
"type" : "half_float"
},
"location" : {
"type" : "geo_point"
},
"longitude" : {
"type" : "half_float"
}
}
},
"kibana_discover_url" : {
"type" : "keyword"
},
"match_body" : {
"type" : "object",
"enabled" : false
},
"match_time" : {
"type" : "date",
"format" : "date_optional_time"
},
"rule_name" : {
"type" : "keyword"
},
"until" : {
"type" : "date",
"format" : "date_optional_time"
}
}
}
},

I need to enable the mapping of match_body field with an object type, as in this object I have a match_body.agent.lables.tenant which is necessary for making visualizations.