* Since CentOS Stream does not use the 'CentOS-8.*' labelling scheme.
* This is a follow up to #1777.
* Also fix Windows Kit location for signing scripts.
* Remove BypassRAMCheck from Extended Windows 11 installation since the minimum
RAM requirements for Windows 11 are 4 GB and not 8 GB as pointed out in #1791.
* Display Windows edition code when we can't resolve it.
* VS2019 wants us to have PackageOptionalProjectsInIdeBuilds enabled? So be it.
* This basically means that the script is validate *TWICE*, using two
completely independent signatures, before it is allowed to run, which
should add another mitigation layer against TOCTOU (which we already
friggin' mitigated against anyway) and other potential vectors of
attack.
* Also remove -DisableFirstRunCustomize option and the associated cookie
prompt monitoring, which the latest version of Fido no longer requires.
* Also update WDK version for signtool and flesh out PKI error messages.
* Rather useless, since elevated apps are neither accepted by Microsoft nor
will they run by default when sideloaded. But, hey, I can has apps!
* Also update sign and sed scripts
* "[Grumble] Stupid Microsoft... [Grumble] Couldn't push updated PKI algorithms
to Windows platforms... [Grumble] Even if their lives depended on it..."
* default is enabled (=> add --without-freedos to disable)
* also update the release process as a result
* also update version to rufus next
* also fixed FreeDOS embedded files lost when RC is edited in Visual Studio
