I expect that Signal encrypts the notification data prior to sending it to Apple, then decrypts it on-device using a Notification Service Extension – this is a common pattern to avoid trusting Apple with any sensitive data.

That would mean Apple stored the cleartext on-device after decryption.

in the case reported the content did not leave the device. feds retreived them directly from the phone.

+ Messengers like Snapchat and WhatsApp;

despite "end-to-end" encryption (for WhatsApp) they are sending copy of some messages based on keywords to authorities, PRISM-like.

Officially to protect kids, but who knows what is in this keywords list.