:cve: Sphinx role takes a CVE number as an argument and creates
a hyperlink to the relevant ISC Knowledgebase document that might have
more up-to-date or verbose information than the relevant release note.
This makes reaching ISC Knowledgebase pages directly from the release
Make all CVE references in the release notes use the new Sphinx role.
(Heavily based on !4563 (merged).)