Update API usage

Author: rushanmu-cisco

doc/SAI-Proposal-MACSec-Secure-Policy.md

@@ -35,6 +35,8 @@ Must Secure is the most stringent secure policy.
 
 - If MKA session remains down, only EAPol(Extensible Authentication Protocol over LAN) packets are exchanged.
 
+- If the peer does not support MACsec, traffic still passes unencrypted (avoiding connectivity loss).
+
 ## Should Secure (Fail-Open)
 
 Should Secure is a less stricter policy than Must Secure.
@@ -45,9 +47,11 @@ Should Secure is a less stricter policy than Must Secure.
 
 - The network continues to function, but the traffic on that specific link remains unencrypted.
 
+- If the peer does not support MACsec, traffic still passes unencrypted (avoiding connectivity loss).
+
 # SAI Attribute Enhancement
 
-The MACSec port attribute is newly introduced to allow configuration of the MACSec secure policy.
+The below MACSec port attribute is newly introduced to allow configuration of the MACSec secure policy. This attribute controls how the switch’s MACsec security engine enforces link protection. When set, the attribute instructs the hardware to apply the corresponding policy on the specified port.
 
 ```c
 typedef enum _sai_macsec_port_attr_t
@@ -109,7 +113,12 @@ typedef enum _sai_macsec_port_secure_policy_t
 
     /* Set Secure Policy */
     attr.id = SAI_MACSEC_PORT_ATTR_SECURE_POLICY;
-    attr.value.u32 = SAI_MACSEC_PORT_SECURE_POLICY_MUST_SECURE;
+
+    if (must_secure) {
+        attr.value.u32 = SAI_MACSEC_PORT_SECURE_POLICY_MUST_SECURE;
+    } else {
+        attr.value.u32 = SAI_MACSEC_PORT_SECURE_POLICY_SHOULD_SECURE;
+    }
     attr_list.push_back(attr);
 
     sai_create_macsec_port_fn(&macsec_port_id,