Add exclude_roles configuration parameter to LDAP authorization backend

[cwperks]

Description

Adds a new config value for LDAP Authorization Backend called exclude_roles. This config value lets a cluster administrator configure a list of patterns of roles to exclude from an external LDAP system to limit the backend roles fetched for a user to the most pertinent roles for OpenSearch.

[codecov-commenter]

Codecov Report

Attention: 11 lines in your changes are missing coverage. Please review.

Comparison is base (321604c) 65.62% compared to head (8141cd5) 65.85%.

❗ Your organization needs to install the Codecov GitHub app to enable full functionality.

Additional details and impacted files

@@            Coverage Diff             @@
##             main      #20      +/-   ##
==========================================
+ Coverage   65.62%   65.85%   +0.22%     
==========================================
  Files         298      298              
  Lines       21247    21258      +11     
  Branches     3457     3464       +7     
==========================================
+ Hits        13943    13999      +56     
+ Misses       5583     5525      -58     
- Partials     1721     1734      +13     

Files	Coverage Δ
...ava/com/amazon/dlic/auth/ldap/util/LdapHelper.java	67.50% <ø> (ø)
...g/opensearch/security/support/WildcardMatcher.java	66.87% <83.33%> (+2.13%)	⬆️
...ic/auth/ldap/backend/LDAPAuthorizationBackend.java	62.71% <55.55%> (+0.21%)	⬆️
...zon/dlic/auth/ldap2/LDAPAuthorizationBackend2.java	47.98% <50.00%> (+16.75%)	⬆️