Allow `:read_list` when `:read_group` is allowed
What does this MR do?
:read_group is allowed.
This fixes the bug in #58149 (closed) where users without explicit permissions on the group couldn't view the group's boards.
What are the relevant issue numbers?
Closes #58149 (closed)
Does this MR meet the acceptance criteria?
- Changelog entry added, if necessary
- Documentation created/updated via this MR
- Documentation reviewed by technical writer or follow-up review issue created
- Tests added for this feature/bug
- Tested in all supported browsers
- Conforms to the code review guidelines
- Conforms to the merge request performance guidelines
- Conforms to the style guides
- Conforms to the database guides
- Link to e2e tests MR added if this MR has Requires e2e tests label. See the Test Planning Process.
- Security reports checked/validated by reviewer