[VAULT-20073] Docs: update upgrade guide for 1.15 with information on Sentinel RGP group policy application (#23296) (#23350)

Co-authored-by: Kuba Wieczorek <kuba.wieczorek@hashicorp.com>
Co-authored-by: Peter Wilson <peter.wilson@hashicorp.com>

website/content/docs/upgrading/upgrade-to-1.13.x.mdx

@@ -89,6 +89,10 @@ FAQ](/vault/docs/deprecation/faq#q-what-are-the-phases-of-deprecation).
 Affects upgrading from any version of Vault to 1.13.x. All other upgrade paths
 are unaffected.
 
+### Application of Sentinel Role Governing Policies (RGPs) via identity groups
+
+@include 'application-of-sentinel-rgps-via-identity-groups.mdx'
+
 ## Known issues
 
 @include 'tokenization-rotation-persistence.mdx'

website/content/docs/upgrading/upgrade-to-1.14.x.mdx

@@ -31,6 +31,10 @@ Official images separately.
 `vault.raft_storage.bolt.write.time` has been corrected from a summary to a counter to more accurately reflect that it
 is measuring cumulative time writing, and not the distribution of individual write times.
 
+### Application of Sentinel Role Governing Policies (RGPs) via identity groups
+
+@include 'application-of-sentinel-rgps-via-identity-groups.mdx'
+
 ## Known issues and workarounds
 
 @include 'known-issues/ui-pki-control-groups.mdx'

website/content/partials/application-of-sentinel-rgps-via-identity-groups.mdx

@@ -0,0 +1,5 @@
+As of versions `1.15.0`, `1.14.4`, and `1.13.8`, [the Sentinel RGPSs derived from membership in identity groups apply
+only to entities in the same and child namespaces, relative to the identity group](/vault/docs/enterprise/sentinel#rgps-and-namespaces).
+
+Also, the [`group_policy_application_mode`](/vault/api-docs/system/config-group-policy-application) only applies to
+to ACL policies. Vault Sentinel Role Governing Policies (RGPs) are not affected by group policy application mode.