(Doc+) SIEM + frozen tier compatibility

[stefnestor]

👋🏽 howdy, team!

1. Since ES Data Tiers are sequentially hardware performant, because we call out cold this appends the same rules apply to frozen (related to securitySolution:excludeColdAndFrozenTiersInAnalyzer from kibana#172162). Kindly see examples
   • kibana#139969 for linked internal examples of e.g. alert indices .alerts-security* being hosted in frozen breaking SIEM.
   • kb#39606517 where frozen indices containing future dates catch in the Rule lookback window and therefore can degrade product performance.
2. It looks like there's a duplicate section in the SIEM and Kibana docs from security-docs#487 and kibana#103151, respectively, where the latter had additional phrasing so cross-pollinated.
   • ( Paper-trail FYI for my team: security-docs#551 later appears to confirm indicator rules don't support cold, to confirm between PR's which is latest state in (2). It does also suggest indicator match rules do not support cross cluster search, but that was purposely later removed in security-docs#3054 for v8.7 . )

Preview:

• Detections and alerts

[github-actions]

A documentation preview will be available soon.

• 🔨 Buildkite builds
• 📚 HTML diff
• 📙 Preview page

Request a new doc build by commenting

• Rebuild this PR: run docs-build
• Rebuild this PR and all Elastic docs: run docs-build rebuild

_{run docs-build is much faster than run docs-build rebuild. A rebuild should only be needed in rare situations.}

_{If your PR continues to fail for an unknown reason, the doc build pipeline may be broken. Elastic employees can check the pipeline status here.}

[mergify]

This pull request does not have a backport label. Could you fix it @stefnestor? 🙏
To fixup this pull request, you need to add the backport labels for the needed
branches, such as:

• v7.x is the label to automatically backport to the 7.x branch.
• v7./d./d is the label to automatically backport to the 7./d branch. /d is the digit

NOTE: backport-skip has been added to this pull request.

[nastasha-solomon]

Thanks for making these changes, @stefnestor! Couple of questions, in addition to the comments that I left:

• Do these changes need to be reflected in the Serverless version of this page too? If so, I'm happy to add those updates to this PR.
• How far back should we port these changes? For example, is this information relevant to 8.7 - 8.15?

Thanks again for your help with keeping the Security docs current and correct!

[stefnestor]

Okay, ready again! 🙏