Added process definition read, read_instance & update_instance permissions

Due to the enforcement of Camunda permissions the process definition is now mandatory for a user to successfully submit a job result. The other two were added as a precaution.

Note: This is a potential **breaking change** for users not using the `scanner` group provided by default for their scanner user permissions.
The permissions of the default `scanner` group will get updated by default, all others will have to manually expand their scanner groups to match these permissions.

Author: J12934

scb-engine/src/main/java/io/securecodebox/engine/helper/DefaultGroupConfiguration.java

@@ -63,7 +63,12 @@ public void postProcessEngineBuild(final ProcessEngine processEngine) {
                 Resources.PROCESS_INSTANCE,
                 Permissions.READ, Permissions.UPDATE
         );
-
+        createAuthorizationForGroup(
+                processEngine.getAuthorizationService(),
+                GROUP_SCANNER,
+                Resources.PROCESS_DEFINITION,
+                Permissions.READ, Permissions.READ_INSTANCE, Permissions.UPDATE_INSTANCE
+        );
 
         createGroup(identityService, GROUP_CI);
         createAuthorizationForGroup(