What do you mean by the role attribute is empty? Your screenshot shows 4 roles that this user should be able to assume.
I just went through all this, it was a pain to setup, but makes alot of sense after I finally got it all working.
Just to confirm in Okta:
Just to check as well what is the exact iam access you have set for the OktaUser? (I expect it might be policy permissions)