Replace RSASHA1 in autosign test with default alg

Change RSASHA1 to $DEFAULT_ALGORITHM to be FIPS compliant.

There is one RSASHA1 occurence left, to test that dynamically adding an
NSEC3PARAM record to an NSEC-only zone fails.

(cherry picked from commit 6e9fed2d)
73 jobs for !5694 with 3035-dnssec-policy-stops-signing-when-removing-zsk-v9_16 in 20 minutes and 1 second (queued for 8 seconds)
latest merge request