chore: notice for aws/aws-cdk#8607 (#22)

Adding a notice for IAM/EKS OIDC Issue where the OIDC provider currently is retrieving short lived leaf certificates instead of root certificates which have a longer expiration date.

data/notices.json

@@ -1,5 +1,21 @@
 {
   "notices": [
+    {
+      "title": "aws-iam: IAM OIDC provider configures the wrong certificate thumbprint",
+      "issueNumber": 8607,
+      "overview": "Your application is using the iam.OpenIDConnectProvider resource, which currently configures the thumbprint of the leaf certificate instead of the root. Since leaf certificates are rotated more frequently, you are in danger of application errors next time those certificates get rotated. See the attached issue for mitigation steps and apply them as soon as possible.",
+      "components": [
+        {
+          "name": "aws-cdk-lib.aws_iam.OpenIdConnectProvider",
+          "version": "^2.0.0"
+        },
+        {
+          "name": "@aws-cdk/aws-iam.OpenIdConnectProvider",
+          "version": "^1.0.0"
+        }
+      ],
+      "schemaVersion": "1"
+    },
     {
       "title": "apigateway: Unable to serialize value as aws-cdk-lib.aws_apigateway.IModel",
       "issueNumber": 21902,