Update managing-security-and-risk.md

[DanielOrge]

Adding clarification on why finding severity can sometimes be different from a given CVE source, like cve.org or NVD.

N/A

👀 Live preview

https://docs.codacy.com/organizations/managing-security-and-risk/#item-list

🚧 To do

• If relevant, include the Jira issue key at the end of the pull request title
• Perform a self-review of the changes
• Fix any issues reported by the CI/CD

[github-actions]

Overall readability score: 52.78 (🟢 +0.01)

File	Readability
managing-security-and-risk.md	53.05 (🟢 +1.38)

View detailed metrics

🟢 - Shows an increase in readability
🔴 - Shows a decrease in readability

File	Readability	FRE	GF	ARI	CLI	DCRS
managing-security-and-risk.md	53.05	35.78	10.37	14.1	14.1	6.66
	🟢 +1.38	🟢 +8.36	🔴 -0.05	🟢 +0	🟢 +0.06	🟢 +0

Averages:

	Readability	FRE	GF	ARI	CLI	DCRS
Average	52.78	42.72	11.01	12.76	12.64	8
	🟢 +0.01	🟢 +0.03	🟢 +0	🟢 +0	🟢 +0	🟢 +0

View metric targets

Metric	Range	Ideal score
Flesch Reading Ease	100 (very easy read) to 0 (extremely difficult read)	60
Gunning Fog	6 (very easy read) to 17 (extremely difficult read)	8 or less
Auto. Read. Index	6 (very easy read) to 14 (extremely difficult read)	8 or less
Coleman Liau Index	6 (very easy read) to 17 (extremely difficult read)	8 or less
Dale-Chall Readability	4.9 (very easy read) to 9.9 (extremely difficult read)	6.9 or less