Add a simple security.md (#6580)

### What

* Fixes #6567

Has only a note for reporting vulnerabilities right now until we figure
out other aspects of security policy etc.

### Checklist
* [x] I have read and agree to [Contributor
Guide](https://github.com/rerun-io/rerun/blob/main/CONTRIBUTING.md) and
the [Code of
Conduct](https://github.com/rerun-io/rerun/blob/main/CODE_OF_CONDUCT.md)
* [x] I've included a screenshot or gif (if applicable)
* [x] I have tested the web demo (if applicable):
* Using examples from latest `main` build:
[rerun.io/viewer](https://rerun.io/viewer/pr/6580?manifest_url=https://app.rerun.io/version/main/examples_manifest.json)
* Using full set of examples from `nightly` build:
[rerun.io/viewer](https://rerun.io/viewer/pr/6580?manifest_url=https://app.rerun.io/version/nightly/examples_manifest.json)
* [x] The PR title and labels are set such as to maximize their
usefulness for the next release's CHANGELOG
* [x] If applicable, add a new check to the [release
checklist](https://github.com/rerun-io/rerun/blob/main/tests/python/release_checklist)!

- [PR Build Summary](https://build.rerun.io/pr/6580)
- [Recent benchmark results](https://build.rerun.io/graphs/crates.html)
- [Wasm size tracking](https://build.rerun.io/graphs/sizes.html)

To run all checks from `main`, comment on the PR with `@rerun-bot
full-check`.

SECURITY.md

@@ -0,0 +1,9 @@
+Security Policy
+==========================
+
+Reporting a Vulnerability
+--------------------------
+In case you found or suspect a security vulnerabilities which can be directly exploited, please report to [email protected].
+We ask that you do not use other channels or contact project contributors directly. Do NOT raise a GitHub Issue to report a security vulnerability.
+
+Non-vulnerability related security issues such as new great new ideas for security features are welcome on GitHub Issues.