Create "Approve Merge Request" as Separate Permission

Customers are looking for separation of duties when it comes to approving merge requests. They only want certain users to be able to do this.

This is more complex than other granular permission requests because it is part of the approval rule configuration.

More details here.

This request is a blocker for some security related permissions requests. One role would require the following:

Change vulnerability status - admin_*
Approve Merge Requests - admin_*, currently blocked, hence the creation of this issue
View Security Dashboard - read_*
View Vulnerability Report - read_*, already done
View Dependency List - read_*

Add Approve Merge Requests as a permission that can be configurable based on the customizable roles framework.