If you have a look at the packet flow process, you'll have the answer to your question.
The device searches for an existing session before having a look at the policy.
(order is : sanity check - session lookup - destination lookup - zone check - policy lookup).
If you change the policy and clear the sessions, you can have some issues as some applications
don't like the sessions to be broken. You'll have to reestablish all tcp sessions.