Reduce DNSSEC refresh change log noise

[rawlinp]

Only create a changelog entry if any keys actually changed or an error
occurred. Also, differentiate between errors storing into Traffic Vault
and other types of errors.

Closes: #6268

---

Which Traffic Control components are affected by this PR?

• Traffic Ops

What is the best way to verify this PR?

Attempt to refresh the DNSSEC keys in quick succession. If there are no keys refreshed, there should be no change log entry created.

If this is a bugfix, which Traffic Control versions contained the bug?

6.0.0

PR submission checklist

• Change log entry creation not critical enough for testing
• No docs necessary
• This PR has a CHANGELOG.md entry
• This PR DOES NOT FIX A SERIOUS SECURITY VULNERABILITY (see the Apache Software Foundation's security guidelines for details)

[rawlinp]

For some reason, the TP tests are failing to get past the initialize stage, and it seems to be an issue unrelated to this PR.

[zrhoffman]

For some reason, the TP tests are failing to get past the initialize stage, and it seems to be an issue unrelated to this PR.

That is #6283, fixed in #6284

[srijeet0406]

Hit the cdns/dnsseckeys/refresh api endpoint back to back and made sure that changelog msgs were not getting generated.
All tests pass, code looks good.

[srijeet0406]

@rawlinp You might need to rebase for the GHA TP tests to pass.

[rawlinp]

Rebased!

[ocket8888]

You're gonna need to do it again to get #6290 in your branch

[rawlinp]

@ocket8888 I did, but hit another spurious TP test failure (unrelated to this PR).