Add identifier mapping

What does this MR do?

The output of analyzers/clangsa is parsed to SARIF using CodeChcker parse then converted to gl-sast-report with report.sarif.TransformToGLSASTReport.

There doesn't seem to be a canonical mapping from Clang Static Analyzer checkers to CWEs, so we've added a preliminary mapping configuration file with a list of CWEs for each checker. A severity field can also be added.

What are the relevant issue numbers?

clangsa-sast: implement report parser (gitlab-org/gitlab#533888 - closed) • Jason Leasure • 18.0 • On track

Does this MR meet the acceptance criteria?

• Changelog entry added
• Documentation created/updated for GitLab EE, if necessary
• Documentation created/updated for this project, if necessary
• Documentation reviewed by technical writer or follow-up review issue created
• Tests added for this feature/bug
• Job definition updated, if necessary
  • Auto-DevOps template
  • Job definition example
  • CI Templates
• Ensure the report version matches the equivalent schema version
• Conforms to the code review guidelines
• Conforms to the Go guidelines
• Security reports checked/validated by reviewer