vpc_security_group_ids should not be set if network_interfaces.security_groups is set

[gpkc]

https://github.com/hashicorp/terraform-provider-aws/issues/14440

This is causing issues when trying to update the ASG:

Error: updating Auto Scaling Group (...): InvalidQueryParameter: Invalid launch template: When a network interface is provided, the security groups must be a part of it.

Inspecting the UI, when using Terraform like this, the Security Group appears twice in the ASG, and this is an invalid state. When removing vpc_security_group_ids and leaving just the one under network_interfaces in the launch template, then everything seems to work fine.

I'm not sure exactly how it should look like if local.public is true though.