Improve ESC RBAC permissions documentation

[joeduffy]

I wasn't sure where to specifically file this issue, however, there are a few ways we can/should improve our ESC RBAC permission documentation. This starts with the product itself; when I head on over to the Teams page, I see this:

It references and links to stack permissions documentation, but not environment permissions. Should it reference both, and should this page be updated to not just be purely about stacks? https://www.pulumi.com/docs/pulumi-cloud/access-management/teams/

We do have this page: https://www.pulumi.com/docs/esc/environments/#team-permissions. But, for the same reason we put stack permissions underneath Pulumi Cloud, shouldn't we do the same for environment permissions? Feels like we should be consistent.

Finally, the access tokens page doesn't list any environment permissions as something you can configure associated with a token: https://www.pulumi.com/docs/pulumi-cloud/access-management/access-tokens/. Is that correct? I assumed, especially with team tokens, that the permission set would be the same, including environments?