Document security vulnerability reporting process. Minor fixes in other docs, and add OpenSSF badge. Signed-off-by: Andrey Smirnov <andrey.smirnov@siderolabs.com>
