[feat] Tighten Instance Security Group

[jplock]

The InstanceSecurityGroup currently allows egress access to anywhere over HTTPS.

This is required because:

• versions less than v1.4.0 nitro-enclaves-acm require accessing https://iam.amazonaws.com:443 to resolve the IAM role. Once version v1.4.0 is available in the yum repositories, we could consider fix this
• access to S3 to download yum packages through the S3 VPC Gateway endpoint

To resolve this, we need to wait until v1.4.0 is available in the yum repositories and change the S3 VPC Gateway endpoint to a S3 VPC Interface endpoint.

[jplock]

Amazon Linux 2023 version 2023.6.20241010 includes ACM v1.4.0 - https://docs.aws.amazon.com/linux/al2023/release-notes/relnotes-2023.6.20241010.html#amis-2023.6.20241010.repository