fix(docker): validate HERMES_UID/GID to prevent privilege escalation in stage2-hook

[sprmn24]

What does this PR do?

Adds numeric validation for HERMES_UID and HERMES_GID environment variables before passing them to usermod/groupmod in docker/stage2-hook.sh.

Type of Change

• Bug fix

Changes Made

• Added validate_uid_gid() helper function: rejects non-numeric values and enforces range 1000–65534
• Wrapped both HERMES_UID and HERMES_GID conditions with the validator
• Prevents HERMES_UID=0 or HERMES_GID=0 from silently granting root-level privileges to the hermes user

How to Test

• Set HERMES_UID=0 → usermod should NOT fire
• Set HERMES_UID=999 → usermod should NOT fire
• Set HERMES_UID=1001 → usermod fires normally
• Set HERMES_GID=0 → groupmod should NOT fire

Checklist

• Single focused commit
• No secrets or API keys
• Existing UID remap behavior preserved for valid values (1000–65534)

[benbarclay]

Superseded by #35340, which landed in 758454d.

Thanks for raising the privilege-escalation gap @sprmn24 — the same validate_uid_gid() guard ships in #35340, applied to the already-merged PUID/PGID alias path so NAS users (Synology/unRAID/UGOS) are covered in the same conditional. Your fix branch was conflicting against main; #35340 had a clean rebase, hence the merge from there.