docs(gitlab): add note about group access token rotation

[mschoettle]

Changes

This PR adds a note about rotating the group access token to keep the same bot user.

Also updated the required scopes (api allows one to read_user, and autodiscover uses the API so read_api is sufficient).

Context

See the discussion in #28736 (comment)

Closes #21121

Documentation (please check one with an [x])

• I have updated the documentation, or
• No documentation update is required

How I've tested my work (please select one)

I have verified these changes via:

• Code inspection only, or
• Newly added/modified unit tests, or
• No unit tests but ran on a real repository, or
• Both unit tests + ran on a real repository

[HonkingGoose]

Nearly there!

[HonkingGoose]

I'm happy with the docs style and sentences now. 🥳

I'll let a maintainer review the links to GitLab, and our new instructions for technical accuracy.

[renovate-release]

🎉 This PR is included in version 37.399.2 🎉

The release is available on:

• GitHub release
• npm package (@latest dist-tag)
• 37.399.2

Your semantic-release bot 📦🚀

[viceice]

why this is removed? autodiscover will check for write access and filter repo without this permission!

renovate/lib/modules/platform/gitlab/index.ts

Line 168 in f21efd3

min_access_level: 30,

[mschoettle]

I tested autodiscover with read_api and read_repository and it was able to discover repositories.

min_access_level = 30 refers to the Developer role (https://docs.gitlab.com/ee/api/members.html#roles) which is the minimum requirement for the bot account.