Bulk vulnerability dismissal checkboxes were not shown in the group
Vulnerability Report section.

This MR changes the GroupPolicy so that read_group_security_dashboard
policy enables admin_vulnerabilty rule when the access level is
developer or higher.

Update specs to reflect this

Changelog: fixed
EE: true