Update _capacity_planning.erb

@reprazent @m_gill this came out of a discussion in slack here: https://gitlab.slack.com/archives/CNU5W2F5M/p1571174212017500

I habitually do this anyway, so either I should stop, or it should be documented! WDYT?

As the security process gets more streamlined, the amount of toil required will be reduced, but never eliminated entirely, so I think this is reasonable long-term.