Update distribution README.md with recommendations

Provide users with community recommendations around securing installations.

1. change admin password
2. Do not expose JMX or web to public internet
3. Disable protocols not needed
4. Use two-way SSL as best practice, etc.
5. Limit resources by namespace (aka policyEntry) and authorization entry