Clarify that we do both "offline" and "online" image scanning

[llarsson]

Describe the bug

When it comes to vulnerability management documentation, we only talk about Trivy, which does "offline" scanning of images at rest in Harbor. But we also do "online" scanning of the images that are deployed via Starboard, and we also have Grafana dashboard capabilities that show the results.

We should make it clear that we offer both kinds of vulnerability scanning, offline as well as online.

• In images that we use, e.g., the overview of components on the first page, we should have both logos.
• In the dedicated page for vulnerability management (CISO part), we only talk about "online" scanning, not "offline".
• Link to the Vulnerability Management page from the Container Registry page, with wording that makes it clear that we do both types of scanning, because the Container Registry page focuses a lot on the vulnerability management aspect.

Screenshots

N/A

Additional context

We have had people looking at our documentation and not understanding that this is something we offer. Had they not spoken up and asked, they would have wrongfully assumed that we don't have it, and perhaps walked away from us. So this matters.

[viktor-f]

Note that in starboard it is actually trivy that scans the images.