ascanrules: CMDi split timing tests to new scan rule

Signed-off-by: kingthorin <[email protected]>

Author: kingthorin

addOns/ascanrules/CHANGELOG.md

@@ -7,6 +7,7 @@ The format is based on [Keep a Changelog](https://keepachangelog.com/en/1.0.0/).
 ### Changed
 - Maintenance changes.
 - Depends on an updated version of the Common Library add-on.
+- The Remote OS Command Injection scan rule has been broken into two rules; one feedback based, and one time based (Issue 7341). This includes assigning the timing rule ID 90037, and updating the add-on's help content.
 
 ### Added
 - Rules (as applicable) have been tagged in relation to HIPAA and PCI DSS.