Add documentation for new rootless password rotation workflow for DB Static Roles (#28374)

Co-authored-by: John-Michael Faircloth <fairclothjm@users.noreply.github.com>
Co-authored-by: Sarah Chavis <62406755+schavis@users.noreply.github.com>

website/content/api-docs/secret/databases/index.mdx

@@ -534,6 +534,11 @@ this in order to know the password.
 - `username` `(string: <required>)` – Specifies the database username that this
   Vault role corresponds to.
 
+- `self_managed_password` `(string)` – <EnterpriseAlert product="vault" inline />
+  The password corresponding to the username in the database. Required when using
+  the Rootless Password Rotation workflow for static roles. Only enabled for select
+  DB engines (Postgres).
+
 - `db_name` `(string: <required>)` - The name of the database connection to use
   for this role.
 

website/content/api-docs/secret/databases/postgresql.mdx

@@ -51,6 +51,10 @@ has a number of parameters to further configure a connection.
 
 - `password` `(string: "")` - The root credential password used in the connection URL.
 
+- `self_managed` `(boolean: "false")` - <EnterpriseAlert product="vault" inline /> If
+  set, allows onboarding static roles with a rootless connection configuration. Mutually
+  exclusive with `username` and `password`. If set, will force `verify_connection` to be false.
+
 - `tls_ca` `(string: "")` - The x509 CA file for validating the certificate
   presented by the PostgreSQL server. Must be PEM encoded.