Add docs about DEB/RPM packages signature verification

What does this MR do?

Adds documentation about how to use GPG signatures to verify the DEB/RPM packages during installation.

Why was this MR needed?

GPG signatures bring integrity and authenticity prove of the installed packages. As official GitLab Runner packages are being signed, we should document how the user can verify these signatures and where to obtain the GPG public keys needed for the verification.

What's the best way to test this MR?

What are the relevant issue numbers?