3ace2e06d2
Follow-up to hiveops-incident#253 (QDS_ADMIN removed from all 5 backends' SecurityConfig/InstitutionContext, and from the hiveops-auth Role enum so no JWT can carry it). The guide KB still quoted QDS_ADMIN in role/allow-list descriptions, which no longer matched the code. Removed QDS_ADMIN from 26 references across 23 content files; surviving roles (USER, CUSTOMER, ADMIN, MSP_ADMIN, BCOS_ADMIN, AGENT, SYSTEM) left unchanged. No frontmatter touched -> zero module-coverage impact. Doc-accuracy only. Closes #10 Co-Authored-By: Claude Opus 4.8 <noreply@anthropic.com>