0.8.0: Address CIS-VpcDefaultSecurityGroupsMustRestrictAllTraffic (#40)

What

• Explicit declare aws_default_security_group without any security_group_rule

Why

• Address CIS-VpcDefaultSecurityGroupsMustRestrictAllTraffic
• If aws_default_security_group is not defined, it would be created implicitly with access 0.0.0.0/0