docs: document awsExternalId parameter for cross-account AssumeRole

[shivkumr]

Added documentation for the new awsExternalId parameter in TriggerAuthentication, which enables confused deputy protection for multi-tenant environments where a shared KEDA operator assumes roles in different AWS accounts.

Added under "Using KEDA role to assume workload role using AssumeRole" in the AWS auth provider page (docs/2.20/authentication-providers/aws.md), with:

• Trust policy example with sts:ExternalId condition
• TriggerAuthentication example using secretTargetRef
• Note that awsExternalId is optional and only applies to AssumeRole (not AssumeRoleWithWebIdentity)

Checklist

• Commits are signed with Developer Certificate of Origin (DCO)

Relates to kedacore/keda#7665

[netlify]

✅ Deploy Preview for keda ready!

Name	Link
🔨 Latest commit	3d08634
🔍 Latest deploy log	https://app.netlify.com/projects/keda/deploys/69f77a738b452a000830fe82
😎 Deploy Preview	https://deploy-preview-1754--keda.netlify.app
📱 Preview on mobile	Toggle QR Code... Use your smartphone camera to open QR code link.

---

To edit notification comments on pull requests, go to your Netlify project configuration.

[github-actions]

Thank you for your contribution! 🙏 We will review your PR as soon as possible.

While you are waiting, make sure to:

• Add your contribution to all applicable KEDA versions
• GitHub checks are passing
• Is the DCO check failing? Here is how you can fix DCO issues

Learn more about:

• How to become a listed end-user or a listed commerical offering
• Our contribution guide