Those 4 are not “real” categories. Experts only.
Alerts contained in those categories are about inconsistencies in protocols and streams.
In highly sensitive environments, you could enable them to spot novel kind of attacks, or tricks, or anything unusual.
Keep in mind that are “noisy” rules.
Some systems have those 4 extra categories because for a brief period of time they were distributed with rules update (those are usually shipped by default with suricata).
It’s perfectly normal not to have them (and avoids the risk of enabling them).