docs(trc-4626): restore Security Considerations notes agreed in #840 (share-inflation mitigation + decimal basis)

[BlackChar92]

Per #897 / #840.

The April-17 Last Call summary in #840 stated that two non-normative implementation notes would be folded into Security Considerations before Last Call — the share-inflation / donation mitigation and a decimal-basis note — but neither made it into the published tip-4626.md. This PR adds them.

Non-normative clarification only. Security Considerations text; no change to the interface, events, rounding requirements, or any required behavior (TRC-4626 is Final).

• Share-inflation / first-depositor (donation) attack — points at the virtual shares/assets offset (OpenZeppelin) and initial seeding as mitigations, and frames the cost as scaling with the vault asset's decimals (not chain-specific; a 6-decimal asset such as USDT is simply the cheaper case).
• Decimal basis — TRX / most TIP-20 stablecoins are 6 decimals; vaults should document their decimal basis and integrators should read decimals() from both the vault and the underlying rather than hardcoding.

Closes #897.