GITHUB_TOKEN is a managed secret, it is automatically generated and injected into the workflow. There is no need to create a separate token for changesets.

See https://docs.github.com/en/actions/security-for-github-actions/security-guides/automatic-token-authentication#about-the-github_token-secret

also see https://docs.github.com/en/actions/writing-workflows/choosing-what-your-workflow-does/controlling-permissions-for-github_token