A FortiGate configured to use flow-based protection will stop monitoring network sessions that are active when a scanning engine is reloaded after an update (nearly instantaneous process).
This tends to impact long lived network sessions, with chances to be alive during and after an update, such as SMBv3 sessions.