Correct, OIDC returns a JWT and a regular oAuth token
2) If the user authorizes your application, the user is sent to your redirect URI, with an ID token and optionally an access token (if that was requested):
https://<your registered redirect URI>#id_token=<an id token>&access_token=<an access token>
But the JWT (ID Token) only has a 15 minute clock on it iirc.
The access token should be the “regular” 60 day token.
See
For what flows return what kind of tokens.