Update step-security/harden-runner configuration

While apparently the build doesn't fail without this, it is reasonable
for SonarCloud analysis to access the two additional domains.

.github/workflows/sonarcloud.yml

@@ -24,7 +24,9 @@ jobs:
           disable-sudo: true
           egress-policy: block
           allowed-endpoints: >
+            analysis-sensorcache-eu-central-1-prod.s3.amazonaws.com:443
             api.adoptium.net:443
+            api.nuget.org:443
             api.sonarcloud.io:443
             ea6ne4j2sb.execute-api.eu-central-1.amazonaws.com:443
             github.com:443