docs: overhaul and expand GOAD deployment checklist for clarity and completeness

[l50]

Key Changes:

• Reorganized checklist structure for better logical flow and attack-chain clarity
• Added detailed usage instructions, Ansible cross-references, and inventory variant support
• Expanded vulnerability coverage with new sections (e.g., DNS/audit config, host hardening, variant labs)
• Improved context and specificity on vulnerabilities, attack paths, and privilege chains

Added:

• Step-by-step usage guidance and explanation of checklist intent at the top
• Explicit cross-references to Ansible roles and config locations for each item
• New sections for DNS, trust, audit configuration, host hardening bypasses, and GOAD lab variants
• Expanded vulnerability inventory (e.g., LLMNR/NBT-NS/SMBv1/LDAP/ASR/RunAsPPL, credential drops, host admin mapping)
• Detailed per-host and per-template ADCS ESC coverage, including config.json role pointers
• Variant tracking for alternate lab topologies with instructions for use

Changed:

• Rewrote and expanded host, domain, user, and group descriptions for clarity and context
• Updated vulnerability descriptions to specify credentials, privilege chains, and exploitation notes
• Improved formatting and terminology (e.g., "username == password", "bidirectional trust", "cross-account ACL primitive")
• Clarified attack path chains with explicit references to attack types, privilege escalations, and cross-domain/forest scenarios
• Reworked summary and validation tables to reflect expanded inventory, coverage tracking, and applicability per section
• Enhanced explanations of attack techniques (e.g., relay, coercion, lateral movement) with context and specific host/user mapping

Removed:

• Outdated, ambiguous, or redundant checklist items and terminology
• Legacy formatting and generalized vulnerability notes in favor of explicit, actionable descriptions
• Imprecise references to roles, groups, and attack paths, now replaced by detailed, contextual listings