Show vulnerability findings created by Continuous Scans in the UI

Why are we doing this work

Today the pipeline page and MR page only show vulnerability findings for pipelines that have security reports. This needs to be changed to support Continuous Scans for Dependency Scanning, because in that case there are no such reports.

This behavior is enabled by the feature flag that enables Continuous Scans.

Relevant links

#394728 (closed)

Non-functional requirements

Documentation:
Feature flag: TBD in #395692 (comment 1334543307)
Performance:
Testing: add new rspec contexts for to cover both states of the new FF
- ee/spec/controllers/projects/merge_requests_controller_spec.rb
- ee/spec/controllers/projects/pipelines_controller_spec.rb

Implementation plan

Verification steps

Edited Mar 30, 2023 by Fabien Catteau