We see a spike in /api/v1/sessions from the OKTA dashboard with higher counts. Can you confirm, using OpenID endpoint, does the OKTA create sessions from the below endpoints?
/oauth2/v1/authorize
{baseUrl} /v1/token
I see these two endpoints, will not create sessions unless someone makes the session true.