[kbn-es] porting changes for security svl roles from controller (elas…

…tic#200695)

## Summary

In Kibana CI we try to replicate MKI env as much as possible and keeping
roles privileges in sync is important. It often leads to test passing on
KIbana PRs / on-merge pipelines and later failing against real
serverless projects on MKI.

Currently the process is manual, this PR updates predefined security
serverless roles based on
elastic/elasticsearch-controller#771

packages/kbn-es/src/serverless_resources/project_roles/security/roles.yml

@@ -150,6 +150,8 @@ t1_analyst:
         - write
         - maintenance
     - names:
+        - .lists*
+        - .items*
         - apm-*-transaction*
         - traces-apm*
         - auditbeat-*
@@ -273,6 +275,7 @@ t3_analyst:
       privileges:
         - read
         - write
+        - view_index_metadata
     - names:
         - metrics-endpoint.metadata_current_*
         - .fleet-agents*
@@ -474,6 +477,7 @@ soc_manager:
       privileges:
         - read
         - write
+        - view_index_metadata
     - names:
         - metrics-endpoint.metadata_current_*
         - .fleet-agents*