Take the following page (for example) https://localhost/content/control/findContent
field "Data Resource Id" has an icon beside it that creates an ajax dialog pop up. If the session has already timed out. The dialog box would show the login screen.
I suspect that all pages containing this functionality would exhibit the same symptom.