Multiple groups have independently hacked the Xbox One in private to varying degrees, including two unpatchable exploits similar to Fusee-Gelee on Switch. At least one group looked into commercialising their exploit several years ago but in the end never released anything because it was too easy to clone.
I think we'll eventually see public releases but I'm doubtful it will be any time soon. Developers in every scene (Xbox, PlayStation, Nintendo) have been talking for years about how there is little incentive to release exploits anymore. Every generation it gets harder and harder (but not impossible) to hack new consoles so people have to put in more and more work to do so. At the same time consoles are becoming more and more PC like in terms of architecture and there are less and less exclusives so hacking consoles isn't as interesting as it was 15 years ago where you would hack some obscure black box and be rewarded with a bunch of free games that you can't pirate on any other platform. So people spend hundreds or thousands of hours hacking these systems which are very boring internally and then they release the exploit and weeks or months of work quickly gets patched out in a firmware update and all they get out of it are some ungrateful kids screaming at them on Twitter.
fail0verflow wrote about this over a decade ago (I could have sworn it was half that, time flies)
https://fail0verflow.com/blog/2013/espresso/ and things have only gotten worse since then. I'm in a few private group chats with some big names in the console hacking space and basically everyone says the same thing. The only modern (less than 10 years old) console with a thriving homebrew scene is the Switch. The only reason that was as active as it was is because Xecuter showed off a bootrom exploit and that threw the open source people into a frenzy because they hated the fact that a for-profit hacking group was going to release something so big before them. If it wasn't for TX Fusee would probably still be private (although publicly known) to this day.
Going forward people like Max Louarn are probably going to be the people driving the scene. For-profit people are the only ones with any incentive to release anything while it's relevant. Any open source releases will likely just be a reaction to commercial exploits (other than PlayStation exploits for years out of date firmwares). Hexkyz has talked about how Team-Xecuter successfully baited Switch devs into releasing tools and knowledge by dangling tidbits of information on the Switchbrew wiki. "We know how this thing works. Here's proof that we know. Are you going to release it before us or are we going to beat you to the punch?" then the open source people release something because they can't stand the idea of people like Max getting any credibility and in doing so they end up releasing more information than what the for-profit people actually knew which helps them develop their product. You'd have to look at it via archive.org since the Xecuter site was seized but a very obvious example of this in action was when Xecuter was teasing SXOS before the public release and embedded the Switch 2.3.0 master key in plain text at the bottom of the page. No reason to do that other than to enrage the open source people who kept calling TX a fake hacking group.
So in conclusion the Xbox One can and has been hacked, but all of the knowledge about how it is done is kept behind closed doors because there is no reason for anyone to release anything unless they're looking to make money. Everyone with the skills and free time to hack modern systems feels this way (see the fail0verflow blog I linked above. It explains it better than I can). Thank you for coming to my TED Talk.
I will make the prediction that in 12-24 months we will likely see a paid solution for a modern console (PS5 or Xbox S|X) similar to the True Blue for PS3 or SX Pro for the Switch. If it comes out for Xbox S|X then the very few Xbox One exclusives that exist will likely be dumped via backwards compatibility. I know that a paid solution for PS5 was in the works but was scrapped due to being partially dependent on a firmware bug which was patched out before they could release anything, it would have been similar to the
PS4 MTX key. I say more than 12 months because these things take time to develop into a product that is good enough to sell (and add in anti-cloning obfuscation) and there would have been more talk if one was within 12 months of release, but less than 24 months because vulnerabilities definitely exist in modern platforms and for-profit groups can just buy the exploits from the people who privately hold them if they offer enough money.