Add Threats and Mapping to OWASP and Mitre in AIGF Catalogue

[d1gital-f]

I want to propose we approach AIGF and suggest to include Threats and Controls to the catalogue.
AIGF Ref Arch will then import them for threat modelling.
Full mapping:
Threats -> Risks -> Mitigations -> Controls

The catalogue should be centralised, and we maintain the mapping to layers and arch components.

[d1gital-f]

threat_id	friendly_name	source	description	layer_id(s)	control_id(s)

control_id	description